WP comments antispam

Akismet is fine, but I decided to write a simple WordPress comments antispam for research resons. There are some proven methods to fight against spammy comments:

honeypot field “nick”, it is hidden by CSS – only bots will fill it
block comments with BB code [url=…]
HTTPBL (DNSBL) from http://www.projecthoneypot.org – you need API key
Block comment with common bad words
Block direct POST requests (no referer)
Swap regular comment textarea with honeypot field

You can try it and provide me some feedback or samples of unrecognized spam. I’m playing with more methods like language detection or bayesian filter and I can try to implement them in the future.

GitHub Repo

Discover more from Vladimir Smitka

Subscribe to get the latest posts sent to your email.

Leave a comment Cancel reply

About Me

My name is Vladimir Smitka and I’m a security researcher/hobbyist from the Czech Republic. I’m also the owner of Lynt, a PPC Agency. I’m also an active member of the Czech WordPress community and one of the WordCamp Prague organizers.

OPEN .GIT GLOBAL SCAN

230 000 000 sites scanned
390 000 sites affected
100 000 mail send to the developers
150 000+ sites fixed
100+ possitive comments
3500+ thankyou mails
Thousands and thousands sites with another serious issue found

For my research I use affordable Virtual Private Servers from Digital Ocean (they have a great infrascruture), Linode (they have a great understanding for my work) and dedicted servers from Hetzner.

If you like my research, you can make a small donation for coffee and VPS – two basic ingredients for my future security scans.

☕ Buy me a Coffee

Donate – PAYPAL

Follow me