Is it possible that not removing the [recaptcha] tag is causing this?
-
Who here has removed the [recaptcha] tag from their forms? Are you still getting spam? I just removed from a few of my client’s forms. Waiting to see if another spam comes in.
-
The docs say that the field is ignored so either way you’ll get spam. This is more of a Google ReCAPTCHA v3 failure than a failure in CF7 IMHO.
Google’s ReCAPTCHA site didn’t do a good job explaining what this new version really meant. From their site FAQ it states: https://developers.google.com/recaptcha/docs/faq
Should I use reCAPTCHA v2 or v3?
reCAPTCHA v2 is not going away! We will continue to fully support and improve security and usability for v2.reCAPTCHA v3 is intended for power users, site owners that want more data about their traffic, and for use cases in which it is not appropriate to show a challenge to the user.
For example, a registration page might still use reCAPTCHA v2 for a higher-friction challenge, whereas more common actions like sign-in, searches, comments, or voting might use reCAPTCHA v3.
Now it is clear that v3 isn’t really appropriate for the contact form because of the way most malicious actors are using HUGE networks of constantly changing IPs (botnets). It might be a proper solution in other use cases but not this. The time it takes for Google reCAPTCHA v3 to identify spammers might be infinite as it hasn’t stopped a single one in 3 days for any of my clients.
Additionally Google wanted to put this stup1d badge on EVERY page, which they have now allowed us to hide if we integrate a statement on the page itself or in out Terms of Service/Privacy policy.
I hope future updates of the plugin offer the choice for reCAPTCHA v3 vs v2 so we can go back to v2.
- The topic ‘Is it possible that not removing the [recaptcha] tag is causing this?’ is closed to new replies.
