How are would-be spammers registering on my Wordpress blog if I’ve disabled registering?
Recognising that letting people “register” on one’s blog - which in some cases gives them privileges such as being able to write or post or comment - spammers have set up systems to automatically register on peoples’ blogs so they can spam them.
I don’t allow registration on this blog: I’ve turned it off, and also hacked the file that would let you register (it’s ..). [see below]
You shouldn’t be able to register, because I’ve hacked the file that processes the registration form’s output. Yet some spammers do manage to register - there were two “accepted” registrations yesterday. How’s it done, so I can block that hole?
Update: Durr, worked it out. I didn’t copy over the old register file, which would have blocked registrations, when I updated the blog a while ago. Thanks to all those who’ve proved that it does work. Link now killed. :-)
- These posts might be related (the database thinks..):
- OK, ZDNet, I give up - I can't register to comment on your site (16 April 2008; score: 59.74%)
- Spam: the beast is in the numbers (6 March 2006; score: 57.11%)
- The war on blog spam: going about as well as the one on terrorism (15 September 2004; score: 51.43%)
![[Valid RSS]](wp-includes/images/valid-rss.png "Validate my RSS feed"){kind=small}