Blocking All Incoming Email From India

Forum Moderators: phranque

Message Too Old, No Replies

Blocking All Incoming Email From India

l008comm

9:28 am on Jan 21, 2012 (gmt 0)

I get SEO spam all day long to all of my websites. It's always from India, and almost always spamvertising a gmail address. I already report the addresses, but google is extremely slow at dealing with abuse reports. And besides, I'm sick of dealing with all of this spam in any fashion. So I want to block India all together. Most of my websites are local. And the one that is global, well if someone in india needs to contact me, they'll have to find a way other than email I guess.

But I don't post my email address. It's all through web contact forms. So I can't do an actual email block. I could do a geo-ip lookup on every IP that tried to send me an email. But are there any other clever ways that will be free (even though geo-ip's are very cheap, still its the whole idea of paying). Maybe through the user agent? I don't have any of their user agents right now, I'll have to save a few and look for patterns I guess.

If you have any thoughts on the topic, please chime in!

BeeDeeDubbleU

10:12 am on Jan 21, 2012 (gmt 0)

But I don't post my email address. It's all through web contact forms.

Are you receiving the spam through the form or via email?

l008comm

10:18 am on Jan 21, 2012 (gmt 0)

Well they are being sent through a contact form. But the contact form checks akismet and then sends it to me as a real email. But akismet never catches SEO spam.

BeeDeeDubbleU

10:29 am on Jan 21, 2012 (gmt 0)

It should be possible to validate and block a range of IP addresses in your form submission process.

enigma1

10:34 am on Jan 21, 2012 (gmt 0)

Few things you could do to minimize the contact page abuse.

1. Change the link to the contact us page to a new one, so spiders won't have it on index.
2. Make the contact page an orphan one, meaning spiders won't have a direct way from the domain root to find it. Humans can still access it as before(you could use js or a form instead of displaying a direct link).

Spammers locate contact forms from the SEs and these pages have no value in terms of SEO. However if you have a physical presence for your business and you need spiders to index location/phone details use a separate page. Or you could structure it so the form is shown with a js popup once a selector is clicked (not a hard-link) so human visitors see all contact details and the form in the same page.

You could also limit the number of automatic submissions by using cookies, css and/or js. For instance you could check if a session cookie exists before allowing the form to be processed.

Now if the mail spam comes directly to your email address (not via the contact form) is a different matter. I use a helpdesk to retrieve and process my business email, use your domain's mail accounts so you have complete freedom to see all mail headers and filter them accordingly.

PS: Regarding spam from India, I get spam emails from there too. But I get spam mail from every country. It's not country related. I also get phone-calls from people from India, offering projects to work on, or exchange work. So it's unwise to block an entire country's IP range. Spammers operate via systems in every nation.

[edited by: enigma1 at 10:41 am (utc) on Jan 21, 2012]

l008comm

10:38 am on Jan 21, 2012 (gmt 0)

The problem is that SEO spam isn't automated. They are manually submitting the forms. But they're always from India.

enigma1

10:47 am on Jan 21, 2012 (gmt 0)

Even if it's not automated they need to locate the contact page first. If your contact form page is listed with search engines you will get this problem. They do use bots to locate pages with forms.

l008comm

10:49 am on Jan 21, 2012 (gmt 0)

Hmmm next few I get, ill check the IPs in my access log and see if they got to the contact page directly, or if they clicked through the home page

Kate_Oranum

6:00 pm on Jan 30, 2012 (gmt 0)

So what was the result? I really wonder what the outcome is !