How do prevent “fake Membership” sign ups

  • Resolved heath18

    (@heath18)


    5 years, 11 months ago

    I have seen quite a few user registrations recently. Alot of the emails look weird as they are your typical gmail, Yahoo or Hotmail accounts. I have a captcha set up on the register page. I don’t know if they are signing up some other way. I am using a membership plugin but can’t remember the plug-ins name. How do I prevent this?

    The page I need help with: [log in to see the link]

Viewing 1 replies (of 1 total)
  • Plugin Author Chad Butler

    (@cbutlerjr)

    The main thing is to make sure that you have turned off WP’s register setting that allows anyone to register – in Settings > General turn off “allow anyone to register.”

    If you have set that and are already using a captcha, that should help, although it’s not foolproof as spambots are pretty intuitive these days. Version 3.2.5 of the plugin (which is due to release any day now) is going to implement a nonce for the form. That won’t totally eliminate bots, but it will limit certain types of automation. The nonce was optional in previous versions, but will be standard going forward.

    Going to the next level, there is a tutorial for premium support subscribers that describes how to create a “honey pot” for the registration form. That’s basically a field that humans can’t see, but bots do, so when the form is processed if that field contains data it’s highly probable it was an automated signup and an error is returned. If that’s something you want to implement, you can get that tutorial and many more with a support subscription. It’s also included as a feature in the Security extension.

Viewing 1 replies (of 1 total)
  • The topic ‘How do prevent “fake Membership” sign ups’ is closed to new replies.