WordPress.org

Forums

trencaspammers (antispam) improvement (5 posts)

  1. di11rod
    Member
    Posted 10 years ago #

    The trenscanspammers (http://www.estherfuldauer.com/2004/11/08/trencaspammers-10rc-wp-plugin-anti-spam-para-wordpress/)
    plugin is really easy to implement. It's a picture-authorization scheme that only involves placing one file in your plugins directory and a copy-and-paste of code into wp-comments.php and wp-comments-post.php
    The only problem is that the random number in the image is passed back to the server in the hidden field called ts_random. As more WP sites install this anti-spam plugin, the spambot authors only need to filter the form HTML to capture the value of this field and submit it.
    Here's an easy fix-- customize the name of that hidden field. This obfuscation should make trenscanspammers a bulletproof solution to comment spam.
    wp-comments.php-
    <input type="hidden" name="YOUR_IMAGINATION_HERE" value="<?php print $ts_random; ?>"/>
    wp-comments-post.php-
    $ts_random=$_POST['YOUR_IMAGINATION_HERE'];
    The 2 lines of code you're looking for are in the stuff you copy-and-paste from the trenscanspammers code files. The value you'll see there will be ts_random instead of "YOUR_IMAGINATION_HERE".
    Hope this helps people!
    di11rod

  2. Mark Jaquith
    WordPress Lead Dev
    Posted 10 years ago #

    I think you'll have much better luck with Spam Karma. Plus, you don't have to modify any WordPress files.
    http://unknowngenius.com/blog/wordpress/spam-karma/

  3. di11rod
    Member
    Posted 10 years ago #

    I'll come back in a couple weeks and let you know if this authentication scheme is working or not. If I get a single spam, I'll look at that karma approach.
    Appreciatively,
    di11rod

  4. James Huff
    Volunteer Moderator
    Posted 10 years ago #

  5. alpha
    Member
    Posted 10 years ago #

    Trenscanspammers has successfully stopped spam on my blog. The only real drawback to it is that if the user submits comment without code, comment is lost forever. Still, the easiest image-authorization solution to implement.

    Seems like this is already started to happen; It is unknown although very likely that this solution will solve the problem.

Topic Closed

This topic has been closed to new replies.

About this Topic

Tags

No tags yet.