digg

Facebook Connect Join Digg About
See the original image at digwp.com

You Don’t Need Any Plugins to Stop Comment Spam

digwp.com One of the biggest WordPress myths is that you need a bunch of plugins to control comment spam. WordPress is well-equipped to handle the job all by itself. Plugins may provide additional anti-spam functionality, but they are by no means essential to running a spam-free site.

Who dugg this? Made popular 27 days ago

Digg DudeWhat is Digg?

Digg is a place for people to discover and share content from anywhere on the web. Digg surfaces the best stuff as submitted and voted on by the community. Take the Tour to learn more.

37 Comments

show profanity settings
expand all
  • darkism, on 11/02/2009, -2/+26Buried for suggesting registration, moderation queues and requiring name/email as solutions. Why put more barriers in the way of your readers' ability to comment when you can just run a plugin and have most spam taken care of?
  • deadguysleeps, on 11/02/2009, -2/+20how about a drag & drop CAPTCHA to stop spammers?

    demo:
    http://www.webdesignbeach.com/beachbar/ajax-fancy- ...
  • FredFredrickson, on 11/02/2009, -0/+10My site keeps the spam out just fine using only Akismet. I've always been impressed at how effective it is.
  • BillyB, on 11/02/2009, -1/+10Good stuff - my WP site is so overrun with plugins, I need to start deleting stuff.
  • PCMichiana, on 11/02/2009, -1/+10Dugg for pointing out my wordpress ineptitude and laziness... but i'm still not removing my plugins...
  • Otto, on 11/02/2009, -1/+8Buried. While the article is fine, the suggestions it makes are pretty sure to stop most commenters dead in their tracks. I sure wouldn't register on some random site just to leave a comment.

    Better suggestion: These three plugins, in combination, will stop 99.99% of spam on any WordPress site.
    1. Cookies for Comments.
    2. Simple Trackback Validation
    3. Akismet.

    The first two plugins will stop virtually all automated bot postings without any significant increase to the site load. The third catches the rest.
  • nmffffd9, on 11/02/2009, -1/+8Out of 788 total comments on one of my WP sites, Akismet caught 29 out of 36 spam posts. While it's not needed, it still makes life much easier to activate a plugin that's included with WP than having to go and mark comments as spam.
  • FredFredrickson, on 11/02/2009, -0/+636 spam posts out of 788 comments? That's an awfully low ratio.
  • mshensley, on 11/02/2009, -0/+6Yep, Akismet stops the spam almost entirely.
  • justinkwanlee, on 11/02/2009, -0/+6Agreed, adding registration just puts another barrier between your blog and the user. Akismet works fairly well and is easy to use.
  • skelooth, on 11/02/2009, -0/+5That's a really cool idea. Much better than having to type in hard to read letters. It looks pretty hackable though and I'm not sure why the code base for the particular implementation is so bloated.
  • NathanielJ, on 11/02/2009, -0/+5"Why not just use a bunch of plugins instead? Because you don’t have to."

    Uh, sure, but it's more work to do all the crap mentioned in this article than it is to install Akismet, which comes included with Wordpress in the first place. Things like "make me approve all comments" are not solutions -- they just give you tons of work to do for no real reason.
  • Taiyoryu, on 11/02/2009, -0/+3The article is essentially advocating putting hurdles that increase the burden for spammers to post a comment. However, these same hurdles increase the burden on the blogger as well as the commenters, making people less likely to post a comment. The point of plugins is to automate certain manual processes because they are time consuming and distract from the point of a blog, which is to create content and discuss it. Spam plugins allow a blog to be more open and inviting. I swear by Akismet. If you need to put up gates and fences around your blog, you do it for other reasons (premium content, downloads, etc), not because of spam.
  • nyxerebos, on 11/02/2009, -0/+2While the idea is not bad, the implementation could be better (eg, "drag heat into the circle" and the image's name is 'item-heart.png'), Even if a bot couldn't guess the item, it wouldn't need to, it still has a 20% chance of being right on any given attempt, so it won't need many.
  • ThatWebGeek, on 11/06/2009, -0/+2***** YOU DOLPHIIINN!!
    ***** YOU WHALEEEE!!!
  • shishirmba, on 11/02/2009, -3/+5Now I don't need to delete stuff manually.
  • SpamHat, on 11/02/2009, -0/+2This article is stretching things - WP is pretty crap at stopping spam. The answer is not making it more difficult to comment.

    That's a damn sexy blog design he's got there though.
  • Botrax, on 11/02/2009, -0/+2http:BL plugin, blocks IPs based in HoneyPotProject. Works nicely.
  • migbike, on 11/02/2009, -0/+1I don't do 90% of that article and I don't even use Askiment.

    A capcha plugin was all it took. Well that + the default of moderating first time commenters.

    Going through and doing all the stuff in the article takes a ton more time than resolving any plugin issues whenever something gets updated.
  • fireashes, on 11/02/2009, -0/+1Really liked your idea. But now how to use it to work on smart phones,
  • nerddtvg, on 11/02/2009, -0/+1Did you not register to post a comment on Digg? I would assume so since you have an username...
  • dralezero, on 11/03/2009, -0/+1Kind of like this article found a solution for that works for him and his type of site/traffic/comment frequency and is saying "hey everybody you dont need all that crap". Opposite.
  • imns, on 11/05/2009, -0/+1Doesn't degrade well if JavaScript is turned off.
  • UselessTrivia, on 11/02/2009, -1/+2It's incredibly easy...just use a hidden field with a tempting name like "website". When the robots come through they will definitely try to fill that in, even though it's not actually an accessible field to a real user. Any non-null entry results in a spam block.

    That doesn't really need a plugin to work...it's just a matter of how you code your submission form.
  • MonkeyOverlord, on 11/10/2009, -0/+1If WordPress users can get over the shock of using a plugin from SixApart, TypePad Anti-Spam is actually even better than Akismet at blocking spam. It supports both WordPress and Movable Type.
  • Yage2006, on 11/03/2009, -0/+1Well actually I made a plugin for digg to auto-bury anyone on my block list when entering a comment thread.
    Just doing my part :)


  • thejynxed, on 11/02/2009, -0/+1The thing with CAPTCHA is that it's broken, and will be continually broken so long as spammers can pay people (or trick them in quite a few cases) into solving the CAPTCHA for them by re-serving it to another domain under their control.
  • hivoltage815, on 11/02/2009, -0/+1It's easier for a massive well known site like Digg to convince you to register than for Joe Blow's Blog.
  • dralezero, on 11/03/2009, -0/+1These three look like the only ones I think would work out for least moderation and be effective. The rest of them sound like they will hurt SEO by suggesting to make your pages less "popular" so they dont get hit by spam... Akismet already has a learned list of things to block instead of trying to teach your blog with previously approved comments. Also some other communication plugins like Contact Form 7 make use of Akismet or other antispam plugins. I don't believe you can do anything about it natively in CF7.

    Comment author must have a previously approved comment
    Hold a comment in the queue if it contains XX or more links
    Comment Moderation Blacklist and Spam Blacklist

    Really depends on the type of comments you get and how much; if there are repeat visitors/commentors, etc.
  • wizardfingers, on 11/02/2009, -0/+1Who cares, Google Gears ftw. Its just a matter of preference, its just like you don't need an Anti-virus program to help protect and stop viruses from entering on your PC, there's always going to be spam its trying to stop spam the best way you can.
  • lane4, on 11/02/2009, -0/+1This is ineffective, there are only 5 different choices. Spambot can randomly choose one, and get past it quite frequently.
  • NJank, on 11/02/2009, -2/+2didn't say inaccurate. just said buried.
  • alliegott, on 11/04/2009, -0/+0http://www.youtube.com/watch?v=oBkKn8L24h0
  • vagrantradio, on 11/02/2009, -2/+1You don't need plug-ins, registration or otherwise. My website has comments open and spam gets caught just fine.
  • redwallhp, on 11/02/2009, -5/+4Hey, don't bury things because just because you disagree. "Inaccurate" doesn't mean "doesn't support my opinion." While I mainly agree with you, others certainly don't. (I don't mind my comments appearing in moderation queues. I wouldn't want to manage a mod queue myself though.)
  • mikebritton, on 11/02/2009, -4/+1I stopped thinking of my blog as a blog and started thinking about it as a site composed of many apps. Rather than rely entirely on SEO, I added a rich front end to the blog, and gave it hooks for social network applications from which to funnel traffic. The result? No blogspam (bots can't drill into the UI) and infinite scalability. Think outside of the box on the issue of blogspam.
  • contribution, on 11/02/2009, -4/+1Blogger platform is also easily tuned to stop spam comments...Why'z buzz about spam comments? It is not easy to make your blog so much appealing for spammers, isn't it?

  • Add a Comment

    Login or register to comment!
    Or, sign-in super fast with your Facebook account ...


© Digg Inc. 2009 — Content created and posted by Digg users is dedicated to the public domain | Terms of Use Updated | Privacy Policy
DIGG, DIGG IT, DUGG, DIGG THIS, Digg graphics, logos, designs, page headers, button icons, scripts, and other service names are the trademarks of Digg Inc.