Skip to:

Re: Spam, Spam and more spam

So to sum up:

  • Change your signup slug
  • Add some required custom profile fields (or use the hashcash trick posted at the start of this thread)
  • Disable “Allow blog administrators to add new users to their blog via the Users->Add New page”
  • Delete BuddyPress credit in footer.php
  • Delete wp-signup.php
  • Create a robots.txt file with User-agent: * Disallow: /register/ (or whatever your slug is)
  • If all else fails, use CAPTHCA or preferably a simple random question (what colour is snow)

Am I wrong or missing anything?

Also… all of my SPAM registrations were coming from .info domains. I added this to my .htaccess file but I’m not sure it’s correct. I found a million examples via Google search for how to ban full domains or subdomains… but nothing about blocking an entire extension (i.e… Anyway, this is what I wrote:

RewriteCond %{REMOTE_HOST} \\.info$
RewriteRule .* - [F]

Skip to toolbar