Limit spam accounts?

  • Resolved Neilisin

    (@neilisin)


    2 years ago

    Hi there,

    For several weeks now my client who runs a pilates studio has been bombarded with fake registrations, this has flagged a vulnerability in the way members can register and interact with the site. I recently in one sitting had to delete +200 fake accounts in a morning’s sitting for the client.

    I have since increased security measures on the site to limit bot registrations using reCAPTCHA v3 on the PMP registration page, and also using with wordfence login, but the latter has now stopped all members from logging in as the login page does not allow additional login fields.

    I’ve read various threads where the typical developer responses are that their is no intention or interest in integrating better security measures to the login page to pmp, well at least that’s my read on it. :/

    My question in response to that, would PMP work if I directed members to login via the wp-login.php page?

    • This topic was modified 2 years ago by Yui.
    • This topic was modified 2 years ago by Neilisin.

    The page I need help with: [log in to see the link]

Viewing 3 replies - 1 through 3 (of 3 total)
  • Plugin Support Kim White

    (@kimwhite)

    Hello @neilisin,

    I’m sorry to hear of this issue on your site. I’m glad you have increased your security settings. Have you enabled Spam Protection in the advanced settings area of PMPro?

    You do not have to use our login page. If you navigate to Memberships > Settings > Pages – Log in, you can set the login to be WordPress default. This will allow you to use the WordPress Login page and additional features that that some security plugins offer for 2FA.

    Is this what you are looking for?

    Kim W

    Plugin Author Jason Coleman

    (@strangerstudios)

    In addition, you can look into the PMPro Akismet plugin that we just launched. This limits spam a lot at checkout. You can find it on our site here:?https://www.paidmembershipspro.com/add-ons/pmpro-akismet/

    Also make sure the “Spam Protection” option is set on the advanced settings. This will block an IP address for a while if they try to checkout more than 10 times in a row. This works well in conjunction with the Akismet add on. You can even tighten up the spam protection a bit using this code to change the parameters:

    https://gist.github.com/ideadude/f64ce8aaa3b0a0579034082144cc2220

    Let us know if this helps.

    Because there have not been any recent updates to this topic, we will be changing the status to resolved. If you have any new questions or if your issue persists, please feel free to create a new topic.

Viewing 3 replies - 1 through 3 (of 3 total)
  • The topic ‘Limit spam accounts?’ is closed to new replies.