Support » Plugin: s2Member Framework (Member Roles, Capabilities, Membership, PayPal Members) » anti-spam – silent captcha – via registration form?

  • First: please DO NOT suggest the use of ANY form of visible CAPTCHA. My goal is NO visible CAPTCHA of any type.

    Second: this is about s2Member “Registration/Profile Fields & Options.” I’m concerned only about blocking spam bots from registrations. No worries about comments (Thank You Akismet!)

    Assumed: hidden empty input fields work well. Humans don’t see them and they stay empty. Bots fill in everything. A bot will fill in a tempting field … and if I can see a value in that field, I’m relatively certain it is a spam registration.

    Question: s2Member’s Registration/Profile fields offer a lot of capability (THANKS), but what is the right combination of options to:
    1. Make the field and its label invisible to the user.
    2. Keep the field invisible from profile editing.
    3. Ensure data entered by a bot IS visible to me … in the Users panel.

Viewing 5 replies - 1 through 5 (of 5 total)
  • Well, making the field completely hidden probably won’t help with the bots…

    What you could try is have it visible and require a particular format for its value, so a bot will get it wrong but a human will be fine. WP Admin -> s2Member -> General -> Registration/Profile Fields -> Edit field -> Expected Format

    If that’s not good enough, you could try an antispam plugin that doesn’t show up in the interface, e.g. CleanTalk.

    I hope that helps. 🙂

    I just did something like this

    Enter the two digit solution to 4 + 3 + 2 + 1

    Sorry Christian, but there’s a huge amount of experience that shows bots are very capable of filling hidden fields. Bots don’t use regular browsers. Using hidden fields is a heavily recommended technique. All I’m asking is how to have one, as a Registration/Profile Field, that is hidden on the regular form at registration time, that is hidden from users doing profile edits, but visible in the WordPress Users panel.

    and, NO, I don’t want to pay to run everything through a service like cleantalk.

    Well, you can try setting the field’s “Allow Profile Edits” set to “No (uneditable/invisible during/after registration)”. See if that works.

    Of, if you’re using pro-forms, you could try adding the field in a custom template.

    If you’re using wp-login.php you could find another anti-spam plugin that doesn’t add stuff to the interface, I’m guessing there may be one that doesn’t charge.

    Thanks Christian!
    That’s the setting I guessed would work, but am not quite sure … yet.

    It is indeed hidden on the form the visitor sees, and on their profile editing form when they are logged in. Good! It is visible to admins in the User panel, and when editing the user’s profile via the admin panel. Also good!

    I’ve labeled the field “Repeat email” and titled it “repeat_email.” That is a “honey pot” approach. Now, we wait for the bots to show up.

    Thanks again, Bob

Viewing 5 replies - 1 through 5 (of 5 total)
  • The topic ‘anti-spam – silent captcha – via registration form?’ is closed to new replies.