Hi,
I’m trying to plug a specific comment spam hole. I currently use Akismet, Conditional CAPTCHA and Stop Spam Comments as plugins and I believe they continue to stop a good deal of spam comments. BUT now I’m seeing another comment spam profile that I’ve never seen before – in fact ALL my comment spam has this profile now.
Every comment spam has as its link something like:
So I’m interested in ideas that would eliminate someone being able to comment via “post.php?post=<postnumber>&action=edit”.
Not to be rude, but I’m NOT interested in general practices to minimize spam, etc. I’m really looking at just HOW this is functioning that someone could do this and would like to plug that hole up.
(@dleigh)
10 years, 3 months ago
Hi,
I’m trying to plug a specific comment spam hole. I currently use Akismet, Conditional CAPTCHA and Stop Spam Comments as plugins and I believe they continue to stop a good deal of spam comments. BUT now I’m seeing another comment spam profile that I’ve never seen before – in fact ALL my comment spam has this profile now.
Every comment spam has as its link something like:
http://www.leighweb.com/wpress/wp-admin/post.php?post=47&action=edit
Where only the post number changes.
I found an .htaccess post here: http://www.inmotionhosting.com/support/website/wordpress/lock-down-wordpress-admin-login-with-htaccess that looked promising, in that I could change the wp-login.php in the htaccess code for post.php and presumably block someone from doing a POST from outside of my domain to post.php. That didn’t do anything unfortunately.
So I’m interested in ideas that would eliminate someone being able to comment via “post.php?post=<postnumber>&action=edit”.
Not to be rude, but I’m NOT interested in general practices to minimize spam, etc. I’m really looking at just HOW this is functioning that someone could do this and would like to plug that hole up.
Many thanks in advance.