Are you using a custom login form? If so, make sure the login_form action is still being called.
Nope, default login form.
Disable all other plugins and see if it works then. If not, be sure that your private and public keys are correct. Also, verify that your domain is allowed for the keys you’re using.
Tested with no plugins on http://ogedge.org (http://ogedge.com/wp-adin)
Made a new recaptcha key just for ogedge.org
Copied correct public & private keys and still not working.
Sorry, but it works for me. Not sure what else to suggest.
i have the same problem, and i try with a fresh wp instalattion , its the same, recaptcha not working
It appears to be just hooked onto the registration form and not the login form. Line 88 ish of recaptcha.php
I’m in the process of hacking my copy to get this into the login form too; Jeff any chance you can release an official update which includes recaptcha on the login form also?
Cheers
Chris
Why would you want a captcha on the login form?
Jeff, you asked why the user would want a captcha on the login form. Here’s one reason at least:
I currently can’t log into my website, because some **** spambot tried to do so using my username. My account has therefore been locked until tomorrow. If there’d been a reCAPTCHA on the login page, I guess this wouldn’t have happened …
Now I need to find out how to change my username, which WordPress tells me is unchangeable …
Which was the exact same reason I needed it working.
Simple, to help prevent against the brute force attack of the login form by malicious users trying to gain access to the site.
I have some code for this I can post if you like – it’s not a massive change to recaptcha.php
We started using login lockdown which bans IP after 3 attempts at a login or even an incorrect user name guess.
Without getting into a long discussion about it here, the problem with that dmsig85 is that if you have multiple users coming through the same proxy you risk banning everyone coming through that proxy for one person’s mistake (depending on how good the rules are on this are – I’ve not looked at the specific thing you mention).
We do not have users for our sites as they simply use embedded Ajax shopping carts or sell via paypal.
Banning / preventing people from gaining access to wp-admin is exactly what we want as it is only used for site content administration.
