@shanebp
This is the advent of the spammers in the buddypress forum?
@raoof12323
Thank you
That has completely fixed the spam problem I had
thank you to alwaysalready aswell
Have you had any luck
My buddypress site invitations are going straight to people’s email SPAM folders
Richard
0794 332 1470
Previously, it was possible to eliminate the registration page entirely, which I had to do because of excessive spam sign-ups. However, after the latest update, I attempted to delete the page, only to find that BuddyPress pages are no longer accessible in the network admin panel. I even tried renaming the registration page to something obscure, but I’m still inundated with bot and spam sign-ups.
Is the BuddyPress team aware of what I perceive as a major setback in the latest update? Previously, I used a plugin (https://wordpress.org/plugins/user-registration/) to navigate around the weak registration page and I am still using it except that I have the main buddypress registration page causing problems which I cannot cancel. Perhaps I’m overlooking something. If so, could you provide suggestions on how to secure the BuddyPress registration page or eliminate it completely which I would prepare to do as
I’ve never been able to customize it
Mark M.
I have multiple non-Admin test accounts at my site that I use to test user experience. I’ve tried the passwords that should work to log in, to no avail. When I try to reset the password from multiple angles (using the password reset on the site, and from the initial signup email), I’m not receiving a password reset email. (not in spam folder either, and it’s been multiple hours since the first reset attempt)
In addition, when I try to log in from the site’s forum login button, it says “Method Not Allowed”.
I have Buddypress 12.0.0 and just installed the BP Classic plugin which didn’t solve either issue.
Pirates with Ben – About Pirates CSG
Thanks for any help!
Ben
Thank you for your message
tried Sendgrid – then none of the inviatations reached the email address
Mailgun and Elastic Email woudln’t set up properly
any other way to avoid spam folder?
You can use any SMTP plugin with third-party email providers like SendGrid, Mailgun, Elastic Email, etc. Having a dedicated IP can increase email deliverability and reduce the chances of landing in spam folders.
Morning, sorry I couldn’t find the start a new topic button in the main forum.
I have a problem where If I send out invitations for people to join my buddypress site – the invitation email goes straight to people’s spam folders
Is there a way to fix that?
The Codex mentions here that there is a page in Settings > Email but I don’t see it.
So I have 2 questions : by default, does sending a notice as an admin to all users triggers a mail to be sent?
And if so where do I configure/disable it? With 40000 users I’d like to be able to notify users but not send a load of email spam.
(damn the spam on this forum seems constant, that’s frustrating)
I’m using BBpress.
In fact the website I’m working on used BBpress and i’m trying to integrate that and Buddypress (that I enabled mainly to add private message to the website).
bbpress has the advantage to contain templates that work directly when you enable both plugin.
I’m trying to pull all the information from both bbpress profile and buddypress profile to an existing custom theme profile page but that’s the challenging part.
@awol I’m not sure whether david00116 is a spammer or not. One of their messages was clearly a spam.
I’ll test Blocksy again with BP 12.0 to see if I can reproduce the activity comment/reply issue.
Removing the activation URL/key combo from the activation email and requiring users to manually copy and paste the key could indeed help slow down spam registrations to some extent. This approach introduces an additional step that may be more challenging for automated bots to complete, as they would need to extract the key from the email and input it accurately into the form. While it might inconvenience legitimate users slightly, it could potentially deter some automated spam bots.
However, it’s important to note that determined spammers might still find ways to automate this process, such as using OCR (Optical Character Recognition) to extract the key from the email. Balancing security with user experience is crucial. Here are a few considerations:
User Experience: Requiring users to manually copy and paste the activation key can be frustrating, especially for users who are less technically inclined. It might lead to a higher abandonment rate during the registration process.
Accessibility: This method might pose difficulties for users with visual impairments or those using screen readers.
Alternate Solutions: There are other methods to combat spam, such as CAPTCHAs, email verification, and behavior analysis. You might consider combining multiple techniques for a more effective anti-spam solution.
Testing: Before implementing such a change, it’s recommended to conduct testing to see if it indeed reduces spam registrations without significantly impacting legitimate users.
As for your request to add “TWITCHAUDIENCESPOTLIGHT,” I’m not quite clear on where you would like to add this text. Could you please provide more context or specify where exactly you want to insert this text?
BBPress is a WordPress plugin that allows you to add a forum or discussion board to your WordPress website. While it doesn’t come with a built-in private messaging feature, there are a few ways you can add this functionality to your forum:
Use a plugin: There are several plugins available that allow you to add private messaging to BBPress. One popular option is the “Private Messages For BBPress” plugin, which adds a private messaging system to your forum. You can also check out other plugins that are available in the WordPress repository.
Use a third-party service: Another option is to integrate a third-party service that offers private messaging. For example, you could use a service like BuddyPress, which offers a range of social networking features, including private messaging. You can integrate BuddyPress with BBPress to add private messaging to your forum.
Custom development: If you have the technical skills or can hire a developer, you could also develop a custom solution to add private messaging to your forum. This would involve creating a plugin or customizing the BBPress code to add the functionality you need.
Whichever method you choose, it’s important to consider the security and privacy implications of adding private messaging to your forum. Make sure to implement appropriate security measures to protect user data and prevent spam or abuse.
so much spam and no way to report it…
anyone able to help fix this error?
Not sure if your issue was the same as mine but we got 600K spam registrations because they were finding this url… /wp-login.php?action=register which was different than our Buddy Press Registration form: /register .
Even though we had Recaptcha, etc the query page was not protected. We ended up creating a redirect to the /register page.
I am using the following:
WP Version: 6.1.1
Permalink: /%postname%/
Active Theme: BuddyX 4.4.5
Platform: Windows
Browser Name Chrome
PHP Version: 8.0.7
MySQL Version: 5.5.5
The plugins I have are these:
Activity Plus Reloaded for BuddyPress 1.0.8
Akismet Anti-Spam 5.0.2
BP Friends Suggestions Widget 1.1.0
BP Profile Search 5.4.7
BuddyPress 11.0.0
BuddyPress Activity ShortCode 1.1.8
BuddyPress Extended Friendship Request 1.2.1
BuddyPress Global Search 1.2.1
BuddyPress Login Redirect to Profile 1.2.3
BuddyPress Profile Completion 1.0.8
BuddyPress Simple Terms And Conditions 1.3
BuddyPress Xprofile Custom Field Types 1.2.5
Classic Editor 1.6.2
Classic Widgets 0.3
Colorlib Login Customizer 1.3.1
CookieYes | GDPR Cookie Consent 3.0.8
Custom Font Uploader 2.0.0
Duplicator 1.5.1
Easy Registration Forms 2.1.1
Force Login 5.6.3
GEO my WP 3.7.2.1
Kirki Customizer Framework 4.0.24
Quick and Easy FAQs 1.3.6
Shared Counts 1.4.1
Verified Member for BuddyPress 1.2.6
Wbcom Designs – BuddyPress Member Reviews 2.8.3
WordPress Username Availability Checker 1.1.8
I have configured a new Register page using ERForms. I’ve created just a wordpress page which has only a shortcode to the ERform.
I’ve set it at buddypress settings-> Pages -> register. Buddypress is redirecting to the wordpress regitration page instead of my page.
I’ve also changed the redirection at buddypress setting to whatever page (for example my FAQ page) and always redirects to the wordpress registration page.
I’ve tried also deactivating all plugin but buddypress and ERforms and no, buddypress is always redriecting to the standard wordpress registration page instead of what I am setting.
Any hint / idea what to cope this problem?
Thnks in advance
Anonymous User 18187419Inactive
Hi, site is 3 years old, 13,000 members, approx. 1100 active daily, but not a single instance of multiple-user spam-messaging, forum spamming, blog comment spamming, etc.
The site is a (very mild) NSFW dating site, niche interest, so is a prime target for bots, but so far no big issues.
If you want to compare ideas/methods then please provide some form of contact, happy to provide info in private.
TBH this was just an idea I had while looking at the scope of possible ways to stop spammers/bots. I’ve implemented a few things already like reCaptcha, Ban Hammer, redirects, honeypot. You’re probably right that many of the bots are stopped at the Activation step IF they are using a disposable email. I assume smart ppl would have developed a way to activate spam accounts if needed. Then again maybe they just go for the low hanging fruit.
I am curious though how you’re so sure bots aren’t registering? I have about 1,200 registered users and the vast majority are Gmail address. Alot of them look suspicious, like Username: dien01234567 Email: dien0134567@gmail. I have a very eclectic audience, so I have to be careful which email services I block. But even so I can’t believe all these Gmail users are real…
Would removing the activation url/key combo from the activation email (forcing user to copy/paste the key) slow down spam registrations?
It seems like it is very easy for bots to activate the account because the key is automatically inserted into the form and activation proceeds. My thought is that forcing the user to copy and paste the activation key would thwart some bots. Obviously this user experience is less ideal but if it stops bots I’m willing to do it.
Any thoughts or experience with this?
hi @imath – I wanted to offer to moderate the support forums given there seems to be spam almost every day.
I moderate a separate community so it would be no burden to me to help keep BP Support Forums spam free.
I am running WordPress 6.0.3 and am on BuddyPress 10.6.0.
I turned off the Private Messaging component in BuddyPress Settings over 2 years ago. Now all of the sudden my users are getting email notifications of Private Messages. I know these are legit because they include text I wrote before I shut Messaging down due to rampant spamming.
I checked BuddyPress Settings and the Private Messaging Component is still unchecked. Is there something else I need to do to ensure Private Messaging is off?
A spammer send messages to all my members, i blocked him and deleted him,
now messages remains in users
https://prnt.sc/_J-VocO9eGxo
is there a way to clean up?
This is Buddypres 7.2.1 btw
Any ideas where this is being called and any way to tweak it to force it to use another index?
For some reason, it’s using date_recorded as the index, thus causing these 1,2,3+ second queries.
They look like this:
SELECT DISTINCT a.id FROM wp_bp_activity a WHERE
(
(
a.user_id IN ( 457,4233,6113,4562,47,5954,5530,5149,5160,5500,6436 )
AND
a.hide_sitewide = 0
)
)
AND a.is_spam = 0 AND a.type NOT IN ('activity_comment', 'last_activity') ORDER BY a.date_recorded DESC, a.id DESC LIMIT 15, 16;
///////////////
SELECT DISTINCT a.id FROM wp_bp_activity a WHERE
(
(
a.user_id IN ( 5137,4581 )
AND
a.hide_sitewide = 0
)
)
AND a.is_spam = 0 AND a.type NOT IN ('activity_comment', 'last_activity') ORDER BY a.date_recorded DESC, a.id DESC LIMIT 0, 16;
///////////////
SELECT DISTINCT a.id FROM wp_bp_activity a WHERE
(
(
a.user_id IN ( 34806 )
AND
a.hide_sitewide = 0
)
)
AND a.is_spam = 0 AND a.type NOT IN ('activity_comment', 'last_activity') ORDER BY a.date_recorded DESC, a.id DESC LIMIT 60, 16;
Why is my topic marked as spam?
