Blocking the creation of accounts without buying

  • Resolved psychic9

    (@psychic9)


    2 years, 1 month ago

    Hi there

    I encounter the same problem again and again. I receive notification from new users with weird email address “user” or “test”. I can’t block everybody from creating an account as my site is not a blog but an ecommerce where people buy things.

    Is there anything I can do to avoid inscriptions by hackers? It’s like Wordfence does not see anything and does not serve to anything here…

    Is it because I have the free version?
    What would you suggest?

    Best
    P

Viewing 1 replies (of 1 total)
  • Plugin Support wfpeter

    (@wfpeter)

    Hi @psychic9, thanks for reaching out to us.

    If you’re running WordPress and/or WooCommerce (non-custom) forms for registration, my recommendation would be to visit Wordfence > Login Security > Enable reCAPTCHA on the login and user registration pages to stem the flow of spam signups. Real humans filling out the form manually should be the only ones getting through once this is in place, so should greatly reduce headaches over seeing randomly generated email addresses sign up.

    Please note that we recommend that sites with a high number of users signing in such as online stores or membership sites don’t enable Even if you have Wordfence > All Options > Brute Force Protection > Immediately lock out invalid usernames as this can cause a rise in failed login notifications. It is entirely possible that more users result in more accidentally mistyped or incorrect credentials being entered by default. However, “Immediately block the IP of users who try to sign in as these usernames” below this could be input with common names like “test”, “user”, and any others you’re seeing.

    Let me know how you get on!
    Peter.

Viewing 1 replies (of 1 total)
  • The topic ‘Blocking the creation of accounts without buying’ is closed to new replies.