Bobcat

Akismet charges up to $50 per month(!) for non-profit organizations.

Jeremy, that option is only for registered non-profits (although they don’t define what they mean by “registered”; under what paragraph?). We’re not registered, because we don’t have anyone to do the paperwork. Our only “employee” is a paid part-time lobbyist. We really have a shoestring budget, but Akismet seems to think all non-profits are huge corporations.

Yeah, probably. But I’d rather have fewer comments than spam. (And before you say “Akismet”, they charge outrageous fees to non-profits that can barely pay their bills.)

I require users to register to post comments, and I disabled pingbacks/trackbacks. I don’t get any spam.

1. Even if you turn-off pingbacks/trackbacks in the admin panel, you still have to go disable them on posts you’ve already made.

2. Here’s a plugin that turns off comments on posts older than 14 days (you can change the timeout)
https://www.ads-software.com/extend/plugins/close-old-posts/

If you have a small list (a few hundred addresses), you could use this: https://www.pancho.dk/fletmail/ Use version 1.104beta because it allows you to specify how many emails to send in a group, and how long to wait between each group.

OK, great! I’m going to add this to a patch I’m developing for wp-mail to make sure a user has the ‘publish_posts’ capability before publishing a post received via email. It will be a day or two before I add this ereg fix to the patch. See: https://trac.www.ads-software.com/ticket/4642

OK, I found the problem in WordPress version 2.3. A regular expression looking for an email address is wrong. Give this a try:

In wp-mail.php, line 67, change:

if ( ereg(“([a-zA-Z0-9\_\-\.]+@[\a-zA-z0-9\_\-\.]+)”, $author , $regs) ) {

to:

if ( ereg(“([-a-zA-Z0-9_.]+@[-a-zA-Z0-9_.]+)”, $author , $regs) ) {

Please let me know if this solves your problem.

What version of WordPress are you using?

I created a patch which allows publishing based on the ‘publish_posts’ capability (otherwise the status is set to pending), and allows it to be overridden by the phone_content filter. See https://trac.www.ads-software.com/ticket/4642

I disabled trackbacks (via the admin panels, not renaming any file) and accept comments only from registered users, and I have yet to get a single spam message.

Keep in mind that turning off trackbacks in the admin panel only affects future posts. You have to edit each post you already have and explicitly disable trackbacks.

Is this the plugin your tried? https://redalt.com/Resources/Plugins/Role+Manager

It should allow you to create en entirely new role, or to add/remove the appropriate capabilities from specific users.

I have two pending posts, but only one appears on the write post screen. Earlier in the day, neither of them showed up. Looks like a bug to me!

Here’s an update: I created a plug-in to remove the three menu items automatically. It hooks into the admin_menu action and removes the items from the menu. Also, upon plugin activation, it renames the three .php files so they cannot be executed.

Activating a simple plugin is much easier than editing the PHP source after every WordPress update.

I’m not sure if the WordPress password processing is as unsecure as I thought, but I do consider it to be a security problem for someone to be able to enter arbitrary PHP code from an admin account.

You need to call add_filter for the hook phone_content. In your function that filters the message, you need to do the following:

$new_content = str_replace(array(“\r\n”, “\r”), “\n”, $content);
$new_content = ereg_replace(“([^\n])\n([^\n])”, ‘\1 \2’, $new_content);

The first line handles the different forms of end-of-line markers. The second line converts all single newlines to spaces.

Give it a try.

I’m planning on using the phone_content filter to strip the newlines from the email text.