[Plugin: Stop Spammer Registrations Plugin] Special Form

I included the standard wp forms as a double check. You can add your form to the list.

around line 33 in the plugin, one of the first thing the plugin does, is to check the name of the php script that is running.

You can add your custom form to the list by duplicating one of the lines and changing the script name.

for instance you can dupe

(!strpos($sname,’ms.php’))&&

and change the script name to

(!strpos($sname,’myformname.php’))&&

No need to worry about the path or anything, just the script name will do the trick.

Keith

Hi Keith,

thanks for the quick reply.

I’ve insert this code:

(!strpos($sname,'signup.php'))&&

but it doesn’t work…

It must be checking in another script.

Try commenting out or deleting the whole if (lines 32 to 41) and see if that helps. You don’t really need these lines. I had a plugin that checked email on every page and I added this to prevent it from slowing things down. I’ve seen a theme that checks every page the same way.

The plugin hooks the is_email test in WP. This checks to see if the email is well formed or not, and I use this to reject it if it hits the spam dbs.

Another thing that is a problem sometimes, is when the web host has configured PHP so that it can’t open a URL. If allow_url_fopen is off, you may have to turn it on. In PHP5 you create a php.ini file and put that in the same dir as index.php. It has a line:

allow_url_fopen = On

hello,

it doesn’t work with my special form so use the standard-form with the plugin “Theme My Login” (https://www.ads-software.com/extend/plugins/theme-my-login/), but it also doesn’t work.

allow_url_fopen is on

which if-lines i could delete?

You can try deleting lines 45 through 57 of the 1.176 version. This is the section where I check where you are coming from.

The plugin hooks the is_email() function. I did not see that in the theme-my-login plugin, but this is a complex piece of code and it may be called somewhere else.

In any case the next version will hook several places where logins and comments are validated so that if it is missed once it will be caught again.

I will work on the next version as time allows and try to get it released next week.

Thank you! Now the plugin is working!

Great plugin! Thank you so much for you work.

I have installed it and added the APIs. Now I need to ask if this works with the buddypress plugin also installed. I heard that buddypress bypasses the normal WPMU registration system.

Thanks in advance!

I gave up on BuddyPress. It was a good idea, but they should have made joined the code in the same way that WPMU and wordpress joined. I stopped writing BuddyPress plugins because there was so little documentation and it had so many security holes.

Let me know if it works with the buddypress plugin.

Keith

Hello,
I am wanting to use this plugin with the WordPress Profile Builder plugin https://www.ads-software.com/extend/plugins/profile-builder/. I tried following your instructions above but I could not find (!strpos($sname,'ms.php'))&& is there a different way of doing this in version 2.20?

Thanks.

In the newer versions I use a slightly different method. You can see the list in the plugin around line 79. Duplicate one of the lines and change the script name that you wish to exclude.

Keith

I’m not sure I understand, I am getting spam registrations on my registrations page which I want to use this plugin to stop but at the moment spam registrations through this profile builder plugin are being ignored by the spam registrations plugin. I can’t see anything near line 79 to include my registrations script. I’m not too good with PHP, can you specify what code I need to add and where? Would it help if I sent you my ftp details?

I misunderstood. I thought that you wanted to exclude ms.php from being checked.

If the profile builder does not call the wp routines to check the email, my plugin will never know. I’ll download the plugin tonight and see what the problem is.

Keith

Ok, thanks.

I just checked. Profile builder does not use the standard routines to check email so any plugins that watch for spam registrations will fail. It would be up to them to use is_email and the other hooks provided by wordpress so that their plugin can play nicely with others.

I would consider hooking their routines in my plugin, but the better way would be for them to use the standard email tests already built into the WordPress API.

Keith

I have being in touch the profile builder developers about this, I don’t think they have any plans to implement the standard email tests in the WordPress API but they are going to add a captcha to the registration form so I will have to use that. Thanks for trying anyway, this plugin is still very good for blocking spam on the comment forms.

Thanks.