bunch of spam packages

Previous Topic Next Topic
 
classic Classic list List threaded Threaded
6 messages Options
Reply | Threaded
Open this post in threaded view
|

bunch of spam packages

Chris Withers
http://pypi.python.org/pypi/girlfriends/1.0
http://pypi.python.org/pypi/house/0.9
http://pypi.python.org/pypi/hardwork/0.9
http://pypi.python.org/pypi/car/0.9

...all spamvertising the same website.

While we're at it, can we get rid of the stupid nested list printers again:

http://pypi.python.org/pypi?%3Aaction=search&term=nested+lists&submit=search

cheers,

Chris

--
Simplistix - Content Management, Batch Processing & Python Consulting
            - http://www.simplistix.co.uk
_______________________________________________
Catalog-SIG mailing list
[hidden email]
http://mail.python.org/mailman/listinfo/catalog-sig
Reply | Threaded
Open this post in threaded view
|

Re: bunch of spam packages

Terry Reedy
On 12/31/2011 6:29 AM, Chris Withers wrote:
> http://pypi.python.org/pypi/girlfriends/1.0
> http://pypi.python.org/pypi/house/0.9
> http://pypi.python.org/pypi/hardwork/0.9
> http://pypi.python.org/pypi/car/0.9
>
> ...all spamvertising the same website.

In chinese, making them really stupid.
The account should be deleted.

> While we're at it, can we get rid of the stupid nested list printers again:
>
> http://pypi.python.org/pypi?%3Aaction=search&term=nested+lists&submit=search

There are about 150 duplicate 'a simple printer of nested lists'
listings. Perhaps pypi needs to be first-package-registration moderated.


--
Terry Jan Reedy

_______________________________________________
Catalog-SIG mailing list
[hidden email]
http://mail.python.org/mailman/listinfo/catalog-sig
Reply | Threaded
Open this post in threaded view
|

Re: bunch of spam packages

Robert Kern-2
In reply to this post by Chris Withers
On 12/31/11 11:29 AM, Chris Withers wrote:
> http://pypi.python.org/pypi/girlfriends/1.0
> http://pypi.python.org/pypi/house/0.9
> http://pypi.python.org/pypi/hardwork/0.9
> http://pypi.python.org/pypi/car/0.9
>
> ...all spamvertising the same website.

It appears to me to be an honest attempt at humor[1] using the setuptools
dependency mechanism rather than spam per se. Using Google Translate on the
blog, it looks plausibly like a legitimate Chinese Python blogger.

[1] Albeit lame and sexist to my American ears. Perhaps it plays better in China.

--
Robert Kern

"I have come to believe that the whole world is an enigma, a harmless enigma
  that is made terrible by our own mad attempt to interpret it as though it had
  an underlying truth."
   -- Umberto Eco

_______________________________________________
Catalog-SIG mailing list
[hidden email]
http://mail.python.org/mailman/listinfo/catalog-sig
Reply | Threaded
Open this post in threaded view
|

Re: bunch of spam packages

Chris Withers
On 01/01/2012 13:26, Robert Kern wrote:

> On 12/31/11 11:29 AM, Chris Withers wrote:
>> http://pypi.python.org/pypi/girlfriends/1.0
>> http://pypi.python.org/pypi/house/0.9
>> http://pypi.python.org/pypi/hardwork/0.9
>> http://pypi.python.org/pypi/car/0.9
>>
>> ...all spamvertising the same website.
>
> It appears to me to be an honest attempt at humor[1] using the
> setuptools dependency mechanism rather than spam per se. Using Google
> Translate on the blog, it looks plausibly like a legitimate Chinese
> Python blogger.
>
> [1] Albeit lame and sexist to my American ears. Perhaps it plays better
> in China.

They're junk, and should be removed, along with all the .nested list
printers

I have to say, I like the idea of requiring moderation for your first
package...

Chris

--
Simplistix - Content Management, Batch Processing & Python Consulting
            - http://www.simplistix.co.uk
_______________________________________________
Catalog-SIG mailing list
[hidden email]
http://mail.python.org/mailman/listinfo/catalog-sig
Reply | Threaded
Open this post in threaded view
|

Re: bunch of spam packages

Robert Kern-2
On 1/1/12 5:37 PM, Chris Withers wrote:

> On 01/01/2012 13:26, Robert Kern wrote:
>> On 12/31/11 11:29 AM, Chris Withers wrote:
>>> http://pypi.python.org/pypi/girlfriends/1.0
>>> http://pypi.python.org/pypi/house/0.9
>>> http://pypi.python.org/pypi/hardwork/0.9
>>> http://pypi.python.org/pypi/car/0.9
>>>
>>> ...all spamvertising the same website.
>>
>> It appears to me to be an honest attempt at humor[1] using the
>> setuptools dependency mechanism rather than spam per se. Using Google
>> Translate on the blog, it looks plausibly like a legitimate Chinese
>> Python blogger.
>>
>> [1] Albeit lame and sexist to my American ears. Perhaps it plays better
>> in China.
>
> They're junk, and should be removed,

I don't disagree per se[1], but I do think that in this case an email to the
author (or blog comment) first would be a better response than silently removing
the packages.

[1] Though to be fair, we would also have to remove antigravity, which I didn't
want to do before this set of joke package. Alas, there is no policy that allows
antigravity while forbidding girlfriend except perhaps taste.

   http://pypi.python.org/pypi/antigravity/

> along with all the .nested list printers

Similarly, I think that something along the lines of a single, mass-Bcc'ed email
to the authors on record would be better than silently removing the packages. If
only we could borrow Guido's time machine to prevent the author of _Head First
Python_ from using this as an exercise...

> I have to say, I like the idea of requiring moderation for your first package...

Except for the nested list printers, there hasn't been a significant problem
that moderation would solve, in my opinion.

--
Robert Kern

"I have come to believe that the whole world is an enigma, a harmless enigma
  that is made terrible by our own mad attempt to interpret it as though it had
  an underlying truth."
   -- Umberto Eco

_______________________________________________
Catalog-SIG mailing list
[hidden email]
http://mail.python.org/mailman/listinfo/catalog-sig
Reply | Threaded
Open this post in threaded view
|

Re: bunch of spam packages

Robert Kern-2
In reply to this post by Chris Withers
On 12/31/11 11:29 AM, Chris Withers wrote:
> http://pypi.python.org/pypi/girlfriends/1.0
> http://pypi.python.org/pypi/house/0.9
> http://pypi.python.org/pypi/hardwork/0.9
> http://pypi.python.org/pypi/car/0.9
>
> ...all spamvertising the same website.

FWIW, the author has removed these packages.

--
Robert Kern

"I have come to believe that the whole world is an enigma, a harmless enigma
  that is made terrible by our own mad attempt to interpret it as though it had
  an underlying truth."
   -- Umberto Eco

_______________________________________________
Catalog-SIG mailing list
[hidden email]
http://mail.python.org/mailman/listinfo/catalog-sig