• Resolved derbydesign

    (@derbydesign)


    Late last week the CAPTCHA plugin I have been using on all of my sites was abruptly removed from WP. The only explanation I have found was posted by the author, saying they have been removed until they take “WordPress” out of their company name.

    With that being said, it got me digging to see if I even need CAPTCHA on my login page with Wordfence installed. (I have both free and paid installs.) I know that WF Premium offers two-step verification, which definitely eliminates the need. If I’m reading the threads correctly … it would seem that setting the login security to a fairly low threshold in the WF Free should also basically do the same thing a CAPTCHA would do.

    Am I correct? If so, can you please tell me what the sensible settings should be in the login security section? Thank you.

Viewing 4 replies - 1 through 4 (of 4 total)
  • Hi, heavy Wordfence user here. I don’t use CAPTCHA, I just use aggressive Wordfence settings along with hiding the login using WPS Hide Login plugin. My settings: Lock out after 3 failures, Lock out after 2 forgot password attempts, Count failures over 30 minutes, Lock out user for 6 hours. And, I use a list of about a dozen “Immediately” block user names, including “admin” and “administrator.” Hope that helps.

    Hi @derbydesign
    Yes, you are correct. mountainguy2 mentioned good examples for the options in “Login Security Options“, following the doc page link should be more descriptive as well.

    Thanks.

    fran330

    (@fran330)

    Hello,
    I had the same question. I understand both your replies, MountainGuy & wfalaa but they seem to only concern login.

    What about avoiding spams from visitors in Comments and Contact Forms?
    For them, is it useful to add a captcha plugin? Would it be a good complement to WordFence or would it be unnecessary?

    Thanks for your attention,
    Fran

    Hi, same question to @fran330 is captcha or recaptcha needed for blocking spam on comments while using wordfence free version plugin?
    As far as I have cheked, in sites with captcha/recaptcha enabled on comment forms or login forms, the interaction between users (comment, register, login…) decreases a lot, but it is also a hard work erasing comments and spam accounts each day.
    Thanks for your help!

Viewing 4 replies - 1 through 4 (of 4 total)
  • The topic ‘Is CAPTCHA needed on login page with WF installed?’ is closed to new replies.