Hello, firstly thank you for this great plugin which has been helping prevent bots from filling up my database with junk!

I’ve recently tested swapping from the classic Woocommerce cart & checkout to the modern block based ones, but have noticed that the challenge field is no longer visible at checkout, only the usual tickbox to create a new account.

If I tick the box to create an account at checkout, I receive the error message as if I hadn’t filled in the challenge, but I cannot actually see the field on the new checkout screen to answer the question.

Does this plugin work with the new checkout screens, or only classic?

I’m running WooCommerce 9.7.1 and No-Bot-Registration 2.1.2 (I have temporarily disabled account creation at checkout for now)

• This topic was modified 2 weeks, 1 day ago by btconline. Reason: Additional info

How do I remove verification from the order page?

Hello, I’m using the latest version of Woocommerce and the No-bot plugin. Unfortunately, it turns out that all attempts to register during Woocommerce checkout end with the error “Your email has been banned from registration! Try using another email address or contact support for a solution.”

My email blacklist is empty and the “Protect WooCommerce checkout pages.” option is disabled.

• This topic was modified 2 months, 2 weeks ago by Envox d.o.o..

Hey there. I’m using Registration Form for WooCommerce plugin. Is it possible to integrate No-Bot into it?

I have someone with a legitimate email that is being blocked. I ran his email against both lists in the plugin, and there are no matches. I can send the email address to you for review, as I would rather not post it publicly.

• This topic was modified 7 months ago by britand.

Hi! Thank you for the plugin! I can’t get it to work. I’m using a multisite with Woocommerce (latest version, 2 stores) and am using a Divi theme. I’ve checked all three boxes in the ‘Where to add security questions?’ section. I have one question set up. In Woocommerce settings, I have the following items:
Guest checkout:
unchecked Allow customers to place orders without an account
checked Allow customers to log into an existing account during checckout
Account creation:
checked Allow customer to create an account during checkout
checked Allow customers to create an account on the “My account” page
checked When creating an account, automatically generate an acct username….
unchecked When creating an account, send the new user a link….

I’ve cleared the cache & cookies from my web browser and have tested my-account page and checkout. The question doesn’t show. (I’ve tested on chrome desktop and mobile) Is there anything else I can do to troubleshoot?

Thanks so much for your help!

Warm regards,
Penny Magas

I created a security question that I now want to delete. However, can only delete the answers. When I try to delete the question portion and save, it causes a critical error.

How can I fix this?

Hi,

Is there some way to add also a reCAPTHCA to the My Account page through this plugin ?

Apparently the logical Question test does not seem enough for Brevo. They have blocked my SMTP account due to spam they say should be coming from My Account page.

Thanks!

Vassilis

Hi!

Even if i leave the form with “blacklisted emails” empty, no users can sign up – they get the error-message that this email is banned from registering.

Disabled the plugin, and then users can register again.

Best regards,

Martin

When I add a new username in the blacklist or when I delete the default ones, save changes, exit page and re-enter it is back to the way it was installed. It is as if it does not save changes.

(Sorry for my bad english).

Hi there,

Deactivating the ‘More protection against fake accounts?‘ settings doesn’t seem to do anything, as when I save it after unticking the options the ticks come back.

Am I doping something wrong, or is this a known error?

Also I’m guessing the latest update also reapplied the default Blacklisted emails list, as ones I’d removed were back making it impossible for customers with Hotmail addresses to register.

I have a BOT attack on a registration page using Wishlist Member’s form. I just updated to recaptcha v3. Will this plugin work on that page, or only wp generic login/register pages?

Thanks.

Is it possible to use this plugin on a multisite installation?

I want to add a security question in the local language to discourage foreign spam without blocking entire countries.

Hi there,

I have seen it says this under the Block Email List Box in the settings:

“Caution: This is a powerful filter matching partial words. So banning “mail” will also block Gmail users!“

Is this field really that sensitive? I would like to add the word MAIL to the box but I am worried this might block ALL EMAIL COMPANIES?

For example I would like to add this: @yopmail.com

Would this mean that gmail and other email companies will also be blocked?

• This topic was modified 1 year, 9 months ago by tallmale.

I have tightened up security on my WP/WooCommerce site: blocked ip’s, blocked all countries except the U.S., added captcha, addressed firewalls, honeypot, and have 2 security plug-ins ( All-in-One WP Security and iThemes Security) and much more at both the Server and Site level and for the most part I have no problems…. but these bot buttholes with their mailbox.imailfree.cc and numerous other imailfree.cc domains with random IP addresses and User names still manage to get 1 or 2 intermittent new, approved user registrations past my defense… It was previously a much greater number but I would still like to find a way to safely remove the issue without affecting actual customers from being overwhelmed by Two Factor Authentication, Captcha’s that make you choose images over and over again, etc…. you know the drill.

<span style=”text-decoration: underline;”>BTW, people with the same issue… blocking by Country is at the server level. If you have WHM, check here: WHM Admin / cPHulk Brute Force Protection.</span>

So, all that being said… all I am asking is if this plug-in has any known issues working with other Security Plug-ins. Knowing now would potentially save me A LOT of heartache and lost business.

Thank you in Advance, “K”

This post is a bit delayed, the update has been available for a few days now.

This is an update with bugfixes and updated routines. In recent updates the filters for WordPress where changed a bit which caused some filtering issues. These have now been resolved. The registration and comment filter has been completely redone so it works faster and more reliable. ClassicPress is now officially supported and tested. And on top of that Classic Commerce support has been added as well. You no longer need the WooCommerce spoof plugin to use No-Bot Registration and Classic Commerce together.

I’ve made a number of updates to the dashboard so it’s more consistent throughout my plugins. This ensures a more uniform function and makes future development a bit more easy for me.

Settings have moved
A few versions ago the dashboard for No-Bot Registration was moved to the Tools menu in your dashboard. Following my other plugin, Analytics Spam Blocker. This also frees up the settings menu which is bloated by most plugins which simply stuff their settings screen in there.

Changes for version 1.8.2

• Fixed better check for filtering comments/registrations
• Tweak replaced alias functions with actual functions
• Tweak minor code cleanups

The download for No-Bot Registration should show up in your dashboard shortly. Or you can download the plugin here: https://ajdg.solutions/product/no-bot-registration/.

I have just installed and set up the plugin. I only want to use it for creating customer accounts, as I have had a lot of fake account registrations here recently.

Unfortunately, the query is not displayed on the exact page concerned, so you can’t answer it. So registration can be done as usual (even by the bots).

In the settings, I have additionally listed certain email providers in the blacklist. This works fine with the plugin. So if you want to register with one of these providers, the error message I generated is displayed.
But the other, necessary query is unfortunately not displayed on this page. Please help ?? I have all the plugins up to date.

Since 27th December, attempts by non-logged-in visitors to submit a comment have begun producing a pop-up with the following message:

Error: Please fill in the correct answer to the security question!
[Go Back]

Users can comment successfully if logged in, but others get the error message.

The “Protect blog comments” checkbox is unticked – I only use this plugin for user registration.

My current update is No-Bot Registration Version 1.8.1

Hi, I don’t know if it has anything to do with any recent update of the plugin, but now all of the sudden several of my members are asked to pass security question when they try to post. They don’t see any question either. I had to deactivate the plugin.

Hi there,

Firstly, this is a fantastic plugin.

Works really well.

One thing we have noticed when users register on our website, is that we keep getting the following warning message, when the wrong security question answer is entered:

“The e-mail address is not correct”

Not sure why the above error message is generated, when the e-mail address is correct, and the wrong answer to the security question is entered.

If the correct answer to the security question is answered, the registration process goes through smoothly.

Kind Regards,

Andrew

Considering placing on your radar?

It seems there are plenty of plugins out there to protect login pages, however, not so much for registration pages (even fewer for BuddyPress, if any at all).

I get many registration requests, unfortunately, most are bots. Buddypress registration pages are an easy mark for bots, and your plugin would be great for solving this issue.

Text (Required) can not be translated.
This is simple text placed into code.
Please, make them translatable.
Thank You.

If every option is enabled, the security field display twice on register page.
enabled – Protect user registration.
enabled – Protect blog comments.
enabled – Protect WooCommerce checkout pages.
Effect: https://imgur.com/CDPvxcl
https://militaryshop24.eu/my-account/
Works fine, but user have to fill two fields.

• This topic was modified 2 years, 5 months ago by betagoo.
• This topic was modified 2 years, 5 months ago by betagoo.

Hi, I like your plugin! How can I change the background and the font color of the input field? Regards

Thank you for a great plugin!

Is it possible to make it so the security question is above the box in mobile view and not to the left of it? It pushes the text box out of view in mobile mode.

Thank you.

Hello, there is a problem, it has happened several times when updating the plugin, it overwrites the settings, it resets to the basic settings. So by the time I realize it, that the customers tell me, all the yahoo and hotmail customers can’t order. Is it intended to reset the settings in some versions?
In my country yahoo and hotmail are the main email used by everyone with gmail, so it’s basic settings that reset is a big concern.

Translated with https://www.DeepL.com/Translator (free version)

Hello,

A question. How can I translate the word “required” after the sum?
Very nice plugin. Thanks!

Best,
Tom

Hi, the form question form is not shown on WooCommerce registration page, so no chance to answer. When email is submitted registration is blocked with following message “Please fill in the correct answer to the security question!”.

I’ve added a domain to the blacklist, “siteher.info”. When I save the changes, the domain is added to the list in alphabetical order. However, every day it looks like the list is reset somehow and my changes disappear. Any advice?

Found one use-case when trap (captcha and captcha_confirm check) in function ajdg_nobot_filter doesn’t work: in case correct answer is provided (9 for default question) check trap part is never triggered:

	// Check trap fields
	$trap_captcha = $trap_confirm = null;
	if(isset($_POST['captcha'])) $trap_captcha = strip_tags($_POST['captcha']);
	if(isset($_POST['captcha_confirm'])) $trap_confirm = strip_tags($_POST['captcha_confirm']);

	if($trap_captcha != "" OR $trap_confirm != " ") {
		wp_die("<p class=\"error\">$security_message</p>");
	}

As I understand, because as soon as question is answered correctly, $user_login is returned and function completes it’s job. But if there is still default question in config, trap then makes no sense.

// Check trap fields should go before // Verify the answer. – in such case plugin would first check if trap is passed and only then check answer.