I have a question about a spam attack to my site a few days ago.
On my RecentChanges page I noticed an unexpected change to a page.
My wiki is configured such that one cannot make changes unless one is
registered. However, anyone can register.
So I saw a new user EthaDecoud had added the following page:
and added a bunch of porn links. However, the big surprise was the
following at the top of the page:
* On Line 428 of multiconfig.py change
('name', _('Name'), "text", "36", _("(Use
('name', _('Name'), "text", "36", _("(Use Firstname Lastname)")),
I had made this change to my multiconfig.py file. I am using a Mac
so it is located at:
Apparently the permissions allowed outside users to read that file
but not write it. (Mercifully!)
So my two questions are:
1) How did this person/robot find/know the change I made to
2) How can I better protect my computer and wiki?