Wordfence and comment spam

  • Resolved WebHostPro

    (@dwhswebhosting)


    7 months, 2 weeks ago

    How does Wordfence help with comment Spam? Or should I add another plug in for this?

    The page I need help with: [log in to see the link]

Viewing 2 replies - 1 through 2 (of 2 total)
  • Plugin Support wfpeter

    (@wfpeter)

    Hi @dwhswebhosting, thanks for your question.

    Comment spam through XML-RPC is common, so disabling it (if you’re able to) is always the best place to start. Restrict XML-RPC by checking the “Disable XML-RPC authentication” checkbox in Wordfence > Login Security > Settings to prevent authentication attempts through that file.

    If you’re not using Jetpack or the WordPress app, you could try disabling access to this route altogether via your .htaccess file with:

    # Block WordPress xmlrpc.php requests
<Files xmlrpc.php>
order deny,allow
deny from all
</Files>

    We don’t currently extend our own reCAPTCHA beyond the WordPress and WooCommerce login/registration pages, although some anti-spam plugins do have the option to add reCAPTCHA to your comment forms if you determine they are coming directly through your site rather than XML-RPC.

    Many thanks,
    Peter.

    Thread Starter WebHostPro

    (@dwhswebhosting)

    That’s great, I’ll make sure to add that to the blogs for now.

Viewing 2 replies - 1 through 2 (of 2 total)
  • The topic ‘Wordfence and comment spam’ is closed to new replies.