There is no magic recipe against spam.
Following some basic recommendation is a first step.
No user called “admin”, no tables prefix beginning with wp_ and so on.
Avoid publishing your site url as long as you have a “spam hole” is also a good practice….
https://codex.wordpress.org/Hardening_WordPress
https://codex.wordpress.org/Combating_Comment_Spam/Denying_Access
Thank You ! i have an another doubt how can i show bbpress forum counts,topic counts,replies for individual user without login in buddypress members page below username.
bbPress related questions can be asked on bbPress support forum.
Please, read here:
How to add "View Who's Online" and "View Statistics"?
I tries everything for spam and the only thing that worked was the WangGuard plugin. Works great at stopping spammers from registering and creating groups.
Now I have no spam trouble at all and it’s all i use. No capta or Akismet or anything else.
https://wordpress.org/plugins/wangguard/
Hi @dwsowash wanguard plugin is premium or free??? because it asks API key???
@vignesh-m,
Please read the doc, according to plugins description:
WangGuard Always will be free for personal use, this means that whenever you have less than 5,000 daily registrations or you make less than $200/month, you never have to pay anything for WangGuard.
https://wordpress.org/plugins/wangguard/
yeah i know but it asks API key when i was get API key means it asks premium
Ho @vignesh-m,
I’m the WangGuard developer.
WangGuard is free is you don’t make $200+, you are a company or you don’t make more that 5.000 queries day.
You need an API Key because your WordPress has to “talk” with WangGuard server, it is like Akismet, you need and API Key, but it is free. In any way, if you need to get a “Premium” API Key, it will be 12€/year. I think it is very cheap.
Kind regards
José Conti
I’m not an expert on mod_rewrite or regexp but:
RewriteCond %{REQUEST_METHOD} POST
RewriteCond %{REQUEST_URI} .register*
RewriteCond %{HTTP_REFERER} !.*http://manifestationjournal.com/.* [OR]
RewriteCond %{HTTP_USER_AGENT} ^$
RewriteRule (.*) http://mysite.com/ [R=301,L]
This tells Apache you want to permenantly redirect all HTTP requests to http://mysite.com/ that a) use the POST method b) include registe, register, registerr, registerrr etc in the path c) are not referred from http://manifestationjorunal.com or don’t have a user agent header
Assuming nothing else is going on in your .htaccess or http.conf files, if the request that takes place fits this bill above exactly then the redirect will happen, else the thing making the request will be granted access
Hi
@Jose
Your reply [You need an API Key because your WordPress has to “talk” with WangGuard server, it is like Akismet, you need and API Key, but it is free. In any way, if you need to get a “Premium” API Key, it will be 12€/year. I think it is very cheap….] does not answer what Vignesh has asked: how to get API if one is starter and yet to get to the mark of $200-5k queries..
At least I could not figure out.
If I had, I could give it a try..
Best,
Arvind
Hi
@Vignesh: I installed WangGuard and it seems to work well. Frequency has come down to 3-4 hr/spam from 20min/spam on average.
You get the Free API also after creating user account with them.
Recommended ? : YES.
@ Jose: Thanks, it works well.
I was able to create a Security Q, and all seems easy now.
BR
Arvind
