Re: Spam, Spam and more spam
So to sum up:
- Change your signup slug
- Add some required custom profile fields (or use the hashcash trick posted at the start of this thread)
- Disable “Allow blog administrators to add new users to their blog via the Users->Add New page”
- Delete BuddyPress credit in footer.php
- Delete wp-signup.php
- Create a robots.txt file with User-agent: * Disallow: /register/ (or whatever your slug is)
- If all else fails, use CAPTHCA or preferably a simple random question (what colour is snow)
Am I wrong or missing anything?
Also… all of my SPAM registrations were coming from .info domains. I added this to my .htaccess file but I’m not sure it’s correct. I found a million examples via Google search for how to ban full domains or subdomains… but nothing about blocking an entire extension (i.e… whatever.info). Anyway, this is what I wrote:
RewriteCond %{REMOTE_HOST} \\.info$
RewriteRule .* - [F]
