OK, I’ve been blogspammed. I’ve now had three comments added to my blog which advertised spectacular medical opportunities. I know the IP address of each (e.g. 62.99.209.54), but I haven’t yet done the spelunking required to find out if its coming from a business or (more likely) from a compromised PC somewhere.
The obvious fix would be to fix the “add comment” module of MT to require interactive validation to enter a comment. (E.g. type back a code displayed as a JPEG.) I’m going to investigate what’s online at Blogspam and I’ll report back.