Comments on: WordPress Plugin :: Anti Spam Image

By: ss

ss — Wed, 18 Jan 2006 13:10:50 +0000

在沒有設定的情況下,我找不到哪裡可以填驗證碼?…^_^
(當然已經激活了!)

By: Nio

Nio — Thu, 19 Jan 2006 01:54:56 +0000

ss：你可以试试访问：http://140.116.155.51/ssblog/index.php?image=1137635324
看看有没有图片出来，或者有没有什么错误显示，这个插件我只在 wp 2.0 中试过，另外，能否告知你的 PHP 版本以及是否有 GD 扩展。

By: ss

ss — Thu, 19 Jan 2006 13:06:00 +0000

Nio:
可正確顯示圖片,但是在comments的地方無法正確顯示出來,是否需要在theme/comments.php裡面做修改呢?

By: Nio

Nio — Fri, 20 Jan 2006 01:32:16 +0000

ss：我用的是：
add_action(’comment_form’, array(&$this, ‘comment_form’));
但有可能有些 theme 的 comments.php 文件中没有加上这个 action，你可以查看一下你的 theme/currenttheme/comments.php 文件，看看表单结束标签（）上边是否有如下代码：
ID); ?>
如果没有，则加上应该就可以了。

By: ss

ss — Fri, 20 Jan 2006 14:33:30 +0000

Nio:
萬分感激,搞定囉~..^_^

By: Mac

Mac — Sat, 21 Jan 2006 02:24:03 +0000

老大，您的链接失效了。

By: Nio

Nio — Sat, 21 Jan 2006 03:05:16 +0000

Mac：不好意思，上回换了目录，忘了改这个 post 了，现在已经可以了

By: Andrej

Andrej — Sat, 04 Mar 2006 06:57:26 +0000

Hello,

just looking for a nice little CaptchaTool for WP.
Your plugin looks cool, but I can not get it to work. What do xou mean with “If it can’t found, please add it in comment form.” I don’t get it right away. But that might be, because i am too tired

Greets from Germany

By: Nio

Nio — Mon, 06 Mar 2006 07:12:02 +0000

hi, Andrej
I mean that the code (do_action(’comment_form’, $post->ID)) maybe doesn’t exist in comment file (theme/currenttheme/comments.php), and you need add the code yourself.

By: spresser

spresser — Tue, 07 Mar 2006 06:48:17 +0000

I am having problems with this where the commentor hits the submit button, and even though the required image code is written correctly, It takes them to a page saying that the security code is invalid, please click back on your browser…
This happens everytime, then when the commentor tries a second time, it works perfectly.

Any ideas?

By: Nio

Nio — Tue, 07 Mar 2006 12:22:58 +0000

hi, spresser.
I have tested the security code in your blog. It worked fine. Maybe some commentors disable browser cookie or their computer datetime is wrong.

By: JM

JM — Tue, 14 Mar 2006 16:32:55 +0000

Thank you very much for your plugin !
It’s a nice piece of work. [works well with K2 theme under WP 2.0.2]

By: Danny

Danny — Wed, 15 Mar 2006 07:15:42 +0000

Hi Nio

I install your plugin. However, the security image did not appear. Do I need to install other extension?

By: Nio

Nio — Wed, 15 Mar 2006 13:54:16 +0000

Hi Danny
It only needs PHP GD extension, and format of the image is PNG.

——– from PHP Manual ——–
The format of images you are able to manipulate depend on the version of GD you install, and any other libraries GD might need to access those image formats. Versions of GD older than gd-1.6 support GIF format images, and do not support PNG, where versions greater than gd-1.6 and less than gd-2.0.28 support PNG, not GIF. GIF support was re-enabled in gd-2.0.28.
——————————–

You can write a php file, and input codes below:
var_dump(gd_info());
?>
The typical output is :
….
[”PNG Support”]=>
bool(true)
….
If “PNG Support” is false, maybe your GD lib version is older than gd-1.6. Perhaps it’s a bug, and I will fix it soon.

By: Danny

Danny — Thu, 16 Mar 2006 02:08:33 +0000

I have just updated the gid lib. It is working now. Thanks Nio.

By: Wense

Wense — Tue, 21 Mar 2006 22:03:27 +0000

正是我需要的验证码功能！谢谢你写的这个插件！

By: eser s.

eser s. — Wed, 29 Mar 2006 12:35:57 +0000

hi, i installed the plugin. it works nice. good work. but i get the following error on IE in the first loading of the page. but not in firefox. after refreshing the error disappear.
what might be causing this error?
thanks..
Warning: ob_start(): output handler ‘ob_gzhandler’ cannot be used after ‘URL-Rewriter’ in /wp-includes/functions.php on line 585

By: Nio

Nio — Thu, 30 Mar 2006 02:23:27 +0000

hi eser s.
It seems that this is WordPress error, not the plugin. Maybe you have opened zlib.output_compression in your php.ini, and you can close it (zlib.output_compression = Off) to fix this warning.

By: Yaba

Yaba — Mon, 03 Apr 2006 11:55:47 +0000

I also get this ob_gzhandler error after activating this plugin, even in firefox. Unfortunately I do not have access to the php.ini as my website is run in a shared environment. Are there any other possibilities to disable this?

Anyway, after the first reload the warning is gone.

By: Nio

Nio — Mon, 03 Apr 2006 14:38:59 +0000

Ok, I have fixed this bug. You can download new version (v0.3) and try it again. If it work fine, tell me please. Thx.

By: Yaba

Yaba — Tue, 04 Apr 2006 14:17:41 +0000

Sorry, did not help. The error still appears upon first load of the page.

By: Yaba

Yaba — Tue, 04 Apr 2006 14:20:59 +0000

Just noticed that on my blog the error seems to appear in a different line number (don’t know if that is caused by a different theme):
Warning: ob_start(): output handler ‘ob_gzhandler’ cannot be used after ‘URL-Rewriter’ in /www/htdocs/w0056ce5/blog/wp-includes/functions.php on line 829

By: Nio

Nio — Tue, 04 Apr 2006 16:06:03 +0000

hi, Yaba.
You can goto WordPress site admin > Options > Reading, and *uncheck* the checkbox “WordPress should compress articles (gzip) if browsers ask for them”. Maybe it can help you.

By: Andrew

Andrew — Wed, 05 Apr 2006 11:03:40 +0000

Nice plugin! Smart code!

My problem is about flooders, not spammers. I am trying to avoid the creation of thousand of fake new user accounts, and thousand of “here is your new password” being sent to my real visitors.

Is it possible to adapt the plugin (or the wp-login and wp-register code) to request the code when registering a new user and for requesting a new password?

By: Andrew

Andrew — Wed, 05 Apr 2006 11:04:29 +0000

By the way, does the plugin requires cookies to work??

By: Nio

Nio — Wed, 05 Apr 2006 13:19:52 +0000

hi, Andrew. Thanks for your suggestion, and I will try to do it. The plugin uses session, and session requires cookies by default.

By: stchatterbox

stchatterbox — Fri, 07 Apr 2006 10:55:01 +0000

Nio, hi, thanks for this plugin. It’s really easy to install.
Receiving over 10-20 spam comments each day, Spam Karma and BB isn’t enough coz it sometimes surpasses the plugins. I tried your Anti-Spam Image and it seemed to work for the first few days.
Today, I receive a spam comment that “surpasses the walls”. Why is this happening? Thanks.

By: Nio

Nio — Sat, 08 Apr 2006 02:37:47 +0000

hi, stchatterbox. Have you received more spam comments or only one?

By: stchatterbox

stchatterbox — Sat, 08 Apr 2006 04:38:02 +0000

Thanks, unfortunately, it’s more than one, Nio, and the spammer was the old spammer that’s always attacking my blog!

By: Nio

Nio — Sat, 08 Apr 2006 13:48:32 +0000

I have tried to post a comment in your blog. I didn’t input security code, but the comment was submited successfully, and it displayed “Sorry, but your comment has been flagged by the spam filter running on this blog: this might be an error, in which case all apologies. Your comment will be presented to the blog admin who will be able to restore it immediately. You may want to contact the blog admin via e-mail to notify him.“. This message was from SK2 plugin. Actually, the spam comment has been saved in your database. Maybe you can try deactivating the SK2 plugin.

By: stchatterbox

stchatterbox — Sat, 08 Apr 2006 14:13:30 +0000

Ok, Nio, I see it now. This “Sorry, but your comment has been flagged ……” message only happened when I started using your plugin, thus obviously it doesn’t work with Spam Karma, I think. Then do you need to mention this point to warn those who’re using spam karma?

By the way, was your comment something like xxx@sina.com and the comment was “test”?

Finally, I know this might not be too related to what you’re doing, but spam , besides distracting, is also taking too much of my bandwidths. Do you know any good methods? I know WP’s codex has a list of plugins to choose from, but I still need some advice, thanks a lot,and good luck with the upcoming versions!

By: Nio

Nio — Sat, 08 Apr 2006 15:22:25 +0000

You are right. The plugin conflicts with SK2, and I will warn the users.

Yes, that’s my test comment. For your last question, I have no idea .

By: stchatterbox

stchatterbox — Mon, 10 Apr 2006 09:26:22 +0000

Nio, seems spammers are quite clever and bad things return after 2 days.
Everything was fine after I deactivated Spam Karma,but today I received 2 comments awaiting moderation and guess what! They are the spam comments I often receive these past few months!
I failed to comment my blog without entering the number code, and I’m just wondering why they could surpass everything?
The spammer’s name is Diether.

By: Nio

Nio — Mon, 10 Apr 2006 14:09:27 +0000

I tried to post a comment in your blog again, and got a message “WordPress database error: [Unknown column ‘comment_count’ in ‘field list’] UPDATE wp_posts SET comment_count = 0 WHERE ID = 89“. It seems that the table ‘wp_posts’ doesn’t contain a field called ‘comment_count’. What version of WordPress are you using? 1.5 or 2.0? Maybe this is a bug.
But, in fact, the comment wasn’t submit successfully. I don’t know how can spammers surpass the plugin .

By: stchatterbox

stchatterbox — Mon, 10 Apr 2006 15:01:19 +0000

I’m using WP version 1.5.2.

Yes, this error message will appear if I didn’t fill in the numbers

By: Nio

Nio — Tue, 11 Apr 2006 01:24:38 +0000

Hi, stchatterbox. You can download and install AntiSpamImage 0.4 to fix this error.

By the way, did you install any other plugins?

By: johannes

johannes — Tue, 18 Apr 2006 11:37:00 +0000

hi nio do you think that this plugin can be integrated in the contact plugin?

you can view it here
http://www.nichemarketingacademy.com/contact-me/

i get a lot of spam lately

thanks

johannes

ps thanks for the plugin

By: Nio

Nio — Wed, 19 Apr 2006 01:02:20 +0000

Hi, johanners. Where can I download the contact plugin? I must read source code first .

By: johannes

johannes — Wed, 19 Apr 2006 11:24:34 +0000

hi nio

thanks for reply

here is the link:
http://ryanduff.net/archives/2005/12/20/wordpress-contact-form-14

johannes

By: Nio

Nio — Fri, 21 Apr 2006 12:31:48 +0000

johannes, I have sent a new WP-ContactForm plugin that I have modified to you.

By: Seba

Seba — Fri, 21 Apr 2006 15:53:17 +0000

Nice plugin!

Very simple and it works fine for me over WordPress 2. I’d added it to my web site to stop spam with some little design modifications.

By: Steffen

Steffen — Fri, 21 Apr 2006 21:07:31 +0000

Hi Nio,

interesting plugin, but it doesn’t show up. The plugin is activated, the test-image with http://your-wp-root/index.php?image=1 works well and the given code was added in comments.php. However, no new security field shows up. Do I have to add additional fields in the comment form?

Thanks for help, Steffen

By: Nio

Nio — Sat, 22 Apr 2006 03:36:05 +0000

hi, steffen. I have saw the security field in your comment page, but there is a JavaScript error. You should move the code ‘ID); ?>’ into the comment form, and the code should be after the ‘url’ input field.

By: Steffen

Steffen — Sun, 23 Apr 2006 20:54:19 +0000

Hi Nio,

now it shows up. Don’t ask, why it didn’t work the 1st time. The format is a bit ugly, but for anti spam it nice.

Ciao, Steffen

By: Nio

Nio — Mon, 24 Apr 2006 01:36:13 +0000

Yes, it’s ugly for anti spam

By: 麦可

麦可 — Fri, 05 May 2006 08:54:26 +0000

你好~我安装了你写的这个插件，感觉的确不错，不过有个小问题：那就是在Firefox中浏览的时候，验证码的整个div全都在提交按钮的下面，不注意的人很容易就忽略掉了，用什么方法能够解决这个问题呢~

谢谢~

By: kelet

kelet — Fri, 05 May 2006 16:53:09 +0000

特地来表示感谢的。。。真是好用阿！！

By: Nio

Nio — Sat, 06 May 2006 02:14:59 +0000

麦可，你好。我用 Firefox 浏览了你的 BLOG，看到验证码图片是正常的，没有在提交按钮下边，请问你的 Firefox 是否禁止了 JavaScript，或者你用的是较低版本的 Firefox？我的是 1.5.0.3，并且我一直都是在用 Firefox，之前 1.0.x 也是正常的，所以不是很清楚你的情况，希望提供更加详细的信息，亦或有屏幕抓图发到我的邮件中。

By: 麦可

麦可 — Sat, 06 May 2006 03:08:17 +0000

感谢Nio~
果然是我的firefox用了禁用javascript的插件造成的结果，麻烦了~ ^^

By: Sunaryo Hadi

Sunaryo Hadi — Sun, 14 May 2006 15:10:53 +0000

johannes, I have sent a new WP-ContactForm plugin that I have modified to you.

I need this also.

Would you publish it in your site

By: John

John — Mon, 15 May 2006 16:18:20 +0000

Wow! Nice and working! Thank you!

By: Mark

Mark — Tue, 23 May 2006 00:41:23 +0000

You say this plugin conflicts with SK2, Does it also conflict with Akismet? I would imagine Akismet and your captcha together would be a pretty good spam protection.

I also use the Trencaspammers captcha on one one of my other sites; it took me nearly all night to figure out, yours was easy as 1,2,3 to install, and looks better too. As for stopping spam, my site is relatively new and spambots have yet to discovered it. Hope it works out. xie xie ni!

By: Sunaryo Hadi

Sunaryo Hadi — Tue, 23 May 2006 01:24:10 +0000

Thanks Nio!

Now, I don’t have bad spam in my forms.

Great works!

By: Nio

Nio — Tue, 23 May 2006 01:32:58 +0000

hi, Mark. I didn’t test it with Akismet. If it works fine, tell me please. Thanks

By: ibnu munzir

ibnu munzir — Tue, 23 May 2006 14:25:06 +0000

simple and easy, thanks!

By: Alan

Alan — Mon, 29 May 2006 09:10:25 +0000

Great product, saved me from piles of spam!

It has been running for a month or two with no problems. I got an email from a visitor today complaining that no matter what was entered the same message always came up “Invalid security code. Press your browsers back button and try again.”. I tried it with the same result…

Strange thing is that people can comment on other posts fine. Is there something that could cause one post to always be blocked?

Here is the post that has the issue:
http://www.hackedgadgets.com/2006/03/10/led-cubes/

Thanks

By: Nio

Nio — Mon, 29 May 2006 14:00:39 +0000

hi, Alan.
Did you change something about WP or PHP?

By: Patrick

Patrick — Tue, 30 May 2006 10:34:16 +0000

This is great plugin but once installed, pingback will die function. any suggest?

By: Nio

Nio — Tue, 30 May 2006 14:16:19 +0000

hi, Patrick. I don’t understand what you mean.

By: rush

rush — Tue, 30 May 2006 15:40:28 +0000

Thank you very much for your plugin! IT’S SIMPLY GREAT!

By: Alan

Alan — Thu, 01 Jun 2006 05:25:14 +0000

Hi Neo,

No nothing changed (my provider could have changed something with PHP). Other posts work fine since I tried a few and I am still getting many comments per day on other posts. It just seems like there is something wrong with this one. Is there something in the database or a config file that could cause this?

Alan

By: Nio

Nio — Thu, 01 Jun 2006 13:28:44 +0000

Hi Alan,

The plugin just uses session, and doesn’t uses any database. I find that if I visit the page using “http://hackedgadgets.com/2006/03/10/led-cubes/”, the plugin works fine. But if I use “www.hackedgadgets.com”, it doesn’t work. When I use ‘www…’, the cookie domain in that comment page is ‘www.hackedgadgets.com’, but the “action” in comment form is “http://hackedgadgets.com/wp-comments-post.php”. This means that the plugin will use session domain “hackedgadgets.com”, it can’t get session data in domain “www.hackedgadgets.com”.

Go to “Site Admin” -> “Options”, setting “WordPress address”, let it be “www.hackedgadgets.com”. Maybe it will work. Good luck.

Nio

By: Mark

Mark — Mon, 05 Jun 2006 19:23:40 +0000

Has anyone tested it on Wordpress 2.03 yet? I am still using 2.01 and 2.02.

By: Mark

Mark — Mon, 05 Jun 2006 21:17:57 +0000

crap, no worky on 2.03

By: Mark

Mark — Mon, 05 Jun 2006 23:54:51 +0000

Wonder if it’s because my site is a sub.domain? I changed the settings in the wp options. still no worky, i would say it is the new wordpress version.

By: Mark

Mark — Tue, 06 Jun 2006 03:30:04 +0000

nevermind, i fixed it, had the same problem as Alan, It happened when i created a sub domain heh!

By: Nio

Nio — Tue, 06 Jun 2006 05:23:59 +0000

Congratulation!

By: joecen

joecen — Wed, 07 Jun 2006 09:52:56 +0000

Thank you for your plugin!

By: Nio

Nio — Wed, 07 Jun 2006 13:23:59 +0000

You are welcome.

By: Mark

Mark — Thu, 08 Jun 2006 18:00:46 +0000

Humm, wonder why it wont work in the IE7 beta browser using a sub.domain, but works in firefox and opera. I noticed this site is a sub.domain. Using IE7 beta it works fine here, but not at my site

By: Gaius

Gaius — Fri, 09 Jun 2006 00:42:31 +0000

I installed this plugin yesterday and have serious problems with xml feeds and with certain ‘bots not being able to see my site (these would be ‘bots I want to see my site). I need to know what files to look at to fix this problem.

I unchecked the Gzip box since I was getting that error as well, it did not fix the other problems.

By: Alex

Alex — Sat, 10 Jun 2006 00:45:17 +0000

Thanks for the great plugin.
感谢伟大插入式。

By: William Teach

William Teach — Sat, 10 Jun 2006 21:03:08 +0000

Great plugin!!! I was using Gatekeeper to stop this annoying blogspot spam going around, and they kept getting around the phrases.

Your plugin seems to be working with SK2, at least for the moment. I am on WP 2.whatever.

By: Suchi Garg

Suchi Garg — Tue, 13 Jun 2006 12:09:53 +0000

This is not working for me. I have wp2.0.3 - can that be the reason?

By: kier

kier — Tue, 13 Jun 2006 20:28:01 +0000

do capchas really work?

By: William Teach

William Teach — Sun, 18 Jun 2006 14:01:29 +0000

doesn’t seem to work for trackbacks, spamkarma or askimet.

By: dave

dave — Mon, 19 Jun 2006 03:46:31 +0000

brilliant, thanks man.

By: mark

mark — Wed, 21 Jun 2006 16:07:19 +0000

Apparantly no one yet spammed this blog so it must be half way decent. who needs trackbacks anyway?

By: John

John — Fri, 23 Jun 2006 03:58:25 +0000

As my previous comment, your plugin is the best anti-spam plugin ever. Not a single spam able to comment sicne I activate it. However, I’ve found some problem below:

1.Izit the plugin got “time frame” for user to key-in the numbers? coz, after sometime viewing the post, when comes to comment, it says auth code is invalid…

2.Pingback and trackback is TOTALLY BLOCKED. Can you upgrade it to be pingback and trackback enable? Test Pingback and Trackback here –> http://www.tamba2.org.uk/wordpress/TestTrack/index.php

By: Galder

Galder — Sat, 24 Jun 2006 16:11:12 +0000

Very good plugin! Congratulations to everybody!

I have installed in my blog, and translated the 4 terms that must be translated into Spanish.

Thanks!

By: 虚拟主机

虚拟主机 — Wed, 28 Jun 2006 05:37:46 +0000

This is not working for me. I have wp2.0.3

By: Patrick

Patrick — Thu, 29 Jun 2006 14:34:39 +0000

Hi, your work is excellent, but it’s seen block all pingback and trackback. any update?
Test your pingback here:
http://kalsey.com/tools/trackback/

By: Patrick

Patrick — Fri, 30 Jun 2006 09:07:34 +0000

Hi, the plugin totally block all trackback and pingback. If you want to enable it, just change
this line:
// If the user is not logged in check the security code
if ( !$user_ID ) {

to:
if (!$user_ID && ($comment_type === ”)) {

By: Nio

Nio — Sat, 01 Jul 2006 13:40:29 +0000

Hi, Patrick.
Thank you very much. I have updated it to version 0.5.

By: HighToro

HighToro — Tue, 04 Jul 2006 22:40:20 +0000

Hello.
I try A.S.I. v0.5 in my blog and have problems. Pingbacks and trackbacks sill not work, and a few spam-comments they could happen. For that reason I decided to return to version 0.4. If I can collaborate in some test I am arranged. it pardons my English badly.

By: Nio

Nio — Wed, 05 Jul 2006 01:22:01 +0000

Hi HighToro.
I have tested it with some friends, and it worked fine for pingbacks & trackbacks. But I found that it couldn’t anti trackback spams. So I backed to use v0.4 in my blog.

By: HighToro

HighToro — Thu, 06 Jul 2006 23:16:55 +0000

Right, the same problem like me. Tanks for your attention Nio. Hope you fix the problem soon! Tnx again!

By: xradar

xradar — Thu, 13 Jul 2006 08:06:08 +0000

Hi! Anti Spam Image is really simple and usefull plugin I installed it on my blog, and described it: http://blog.xradar.net/wordpress/znow-ta-captcha/ (polish). But I send a trackback to yours blog and it doesnt work:(

Greets from Poland:)

By: Felicia

Felicia — Sat, 15 Jul 2006 15:05:34 +0000

it works awesome!

By: Carlo

Carlo — Sat, 15 Jul 2006 19:46:02 +0000

Dear Nio,
my name is Carlo, from Italy. I own the website http:
//unarisatacidisseppellira.net, a word press blog. It was adapted for
me by a programmer, in Italy, but he did not a good job in my opinion.
Which is why I am writing to you. I noticed that he has activated your
anti spam plug-in. I have appreciated this plug-in and your job so I would be happy to hire you in order to complete the job he left unfinished. If
you are available, please let me know and I will send you my requests
in detail. Payments would be made through paypal (or any other mean of your choice).
Please let me know asap.
Regards
Carlo.

By: Chris

Chris — Wed, 19 Jul 2006 01:56:46 +0000

Using firefox 1.5.0.4 on macintosh, if I enter the turing code in error and then press the back button, the comment form is erased. (i.e. the user will have to retype their comment again)

Is there a fix possible for this and is it local only to FF and/or mac?

By: Jason Hendricks

Jason Hendricks — Thu, 20 Jul 2006 02:05:43 +0000

I’ve been using the plugin for a few months in a WordPress MU site, and it has worked fine until yesterday. All of the sudden, none of the images appear on any member blogs.

By: Nio

Nio — Thu, 20 Jul 2006 06:19:31 +0000

Hi, Jason.
Did you change anything (php, subdomain,and etc.) ? Did you enable GD extension of php?

By: Visitor

Visitor — Thu, 20 Jul 2006 13:56:04 +0000

Invalid CSS code on line 36:

‘left’ is not a ‘display’ value

Try to take it off or use ‘float: left’

By: lil wyte

lil wyte — Fri, 21 Jul 2006 19:06:22 +0000

Hello!

I installed Wordpress on my server, and set up a site. It’s a relly nice piece of software. However, I am missing a piece of functionality, and

couldn’t find a suitable answer for it. Mayou you know a plugin I could use?I need to automatically inserts ads in my posts.And not AdSense ads, but rather HTML snippets defined by me (affiliate links, etc). Let’s say I would insert a tag in my post:
– ad here –
and the plugin would automatically replace it with some HTML code, when the post is displayed on my site.I really don’t need any fancy configuration options etc, just the basic replace functionality.
Do you know a plugin that can handle this?

By: Nio

Nio — Sun, 23 Jul 2006 13:35:28 +0000

hi, lil wyte. I have to say sorry to you because I don’t know such a plugin.

By: Wohnung mieten

Wohnung mieten — Sun, 23 Jul 2006 21:50:30 +0000

ganz hilfreich

By: Cristian

Cristian — Mon, 24 Jul 2006 22:19:48 +0000

hy neo, and congratulations on a job well done. one question though: is this plugin supposed to stop all spam ? since all spam si mass sent and not individualy … i’m asking beacuse some of the spam i receive get past this plugin. although it stops a lot of it, there are still some spam-comments that get through. is something wrong at my end or is it just normal ? and if so, can we expect a new version posibly spam free ?

thanks.

By: Nio

Nio — Tue, 25 Jul 2006 11:23:23 +0000

hi, Cristian.
If you are using version 0.5, it can’t anti trackback spams.

By: Cristian

Cristian — Tue, 25 Jul 2006 12:43:15 +0000

So i should use another version ? 0.4 perhaps ? is there any major difference between the two ?

By: Nio

Nio — Wed, 26 Jul 2006 00:54:19 +0000

I’m using version 0.4, but trackback and pingback will not work in this version.

By: Mark

Mark — Sat, 29 Jul 2006 03:46:34 +0000

is it worth upgrading to the 0.5? I haven’t had any problems with the 0.4 yet. yet!

By: Mark

Mark — Sun, 30 Jul 2006 17:24:21 +0000

If the pingbacks don’t work, does that mean there is no chance your site will ever get in a search engine?

By: Rajagopal

Rajagopal — Sun, 30 Jul 2006 18:25:13 +0000

when a person enters the letters in the image wrongly after typing a long comment, they get annoyed to lose all the contents in the comment and its reduces the no of comments.. please provide a way to recover the text..

By: Nio

Nio — Mon, 31 Jul 2006 01:14:21 +0000

hi, Mark.
Just trackbacks not work.

By: Wei

Wei — Wed, 02 Aug 2006 03:47:05 +0000

I changed this code a little bit to improve the security.
===================================
//if ( $_SESSION[’IMAGE_CODE’] != $securitycode ) {
if ( $_SESSION[’IMAGE_CODE’] != md5($securitycode) ){
====================================
and

/*
$_SESSION[’IMAGE_CODE’] = str_replace(array(’0′, ‘o’), array(’1′, ‘p’), strtolower(substr(md5(rand()), 20, 4)));
$char = $_SESSION[’IMAGE_CODE’];
*/
$char = str_replace(array(’0′, ‘o’), array(’1′, ‘p’), strtolower(substr(md5(rand()), 20, 4)));
$_SESSION[’IMAGE_CODE’] = md5($char);
===================

By: jay

jay — Wed, 02 Aug 2006 06:03:04 +0000

how do you get this to work with a sub domain? it must be possible cause this site is a sub domain.

I did this, doesn’t work…

WordPress address (URI): http://webpage.com/sub

Blog address (URI):
http://sub.webpage.com

By: Ambatchdotcom Seocontest

Ambatchdotcom Seocontest — Wed, 02 Aug 2006 08:50:35 +0000

Excellent Plugin there.
Can you make the same for plogger images gallery, there are 40000+ Plogger users
Amit Patel

By: Nio

Nio — Thu, 03 Aug 2006 02:30:09 +0000

Hi, Wei. Thanks for your codes.

By: Nio

Nio — Thu, 03 Aug 2006 02:33:36 +0000

hi Amit Patel. That’s good idea.

By: _ck_

_ck_ — Sat, 05 Aug 2006 11:53:04 +0000

Your code to check for pingback or trackback does not work as is? I had to change it to this to get it to allow them.

function comment_post($post_ID) { global $wpdb, $user_ID, $_POST, $_SESSION, $comment;

if ($comment->comment_type != "comment") {return $post_ID;}

But the bigger problem I have with virtually all Captcha plugins is they require cookies. I am trying to find a way around that since many people block cookies these days.

If you google for “Preserving State Without Cookies” you will find alot of information on that. Maybe you can figure out a solution faster than I can.

By: _ck_

_ck_ — Sat, 05 Aug 2006 13:55:11 +0000

Ignore my previous suggestion for a fix, it’s alot easier than all that.

You have a improper comparison on line 59
change it to this:

if ( !$user_ID && ($comment_type === '')) {

otherwise it passes for trackbacks and pings which is wrong

I’m back to investigating cookie-free methods via
ini_set("session.use_cookies", "0"); ini_set("session.use_trans_sid", "true");

to try to pass the code through the form post instead of cookies or the url.

By: Nio

Nio — Sun, 06 Aug 2006 03:26:51 +0000

hi, _ck_
Trackbacks & pings have been fixed in v0.5 in last month. You can download and check it.
I think “session.use_trans_sid” is NOT security enough. Maybe we should detect whether clients allow cookies first.

By: _ck_

_ck_ — Sun, 06 Aug 2006 09:14:26 +0000

For some reason your v0.5 still fails on my pingback testing and I get the “enter security code” for a pingback.

your line is
if ( !$user_ID && !$comment_type ) {

which I believe can fail.

I replaced it with:
if ( !$user_ID && ($comment_type === '')) {

which works everytime. Note the three “=”

session.use_trans_sid makes the data pass through the form post instead of using a cookie for the session. How is that less secure? Any robot would be able to access any one of those methods so they are all equal?

In any case I believe there has to be a way to simply append a hidden input field and pass the key to compare in the post data directly at the same time as you append the image? You should not have to use sessions or cookies at all. Take advantage of the form that is right there?

By: _ck_

_ck_ — Sun, 06 Aug 2006 10:39:53 +0000

After alot of pondering I think I figured out how to do this without cookies using mysql and slide it right into your existing routine.

Basically when the image is called for, you send it the timestamp. So from there, store the timestamp the the md5 created code into a mysql table. You first check to make sure the code does not exist already - if it does there is a collision within 10-15 minutes which is extremely unlikely.

Upon submit, you 1. check to make sure the timestamp is within 10-15 minutes or so and purge/trim the database - 2. you check the database for a matching md5 code within the past 10-15 minutes (database is already trimmed so it’s just the whole database) 3. if there is no code matching, they either submitted the wrong code or it’s too far after the creation date, send them back.

Granted there is a problem if there are thousands of people requsting a captcha image at the exact same 10-15 minutes but for 99% of the blogs out there, this is far from an issue?

Defeating this method would be just as hard as using session variables.

By: Nio

Nio — Sun, 06 Aug 2006 13:47:27 +0000

Hi, _ck_, thanks for your comments.

I have a question. What’s the $comment_type value of pingback? I think it’s “pingback”, because it appears in some files of wp. If I’m wrong, tell me please.

For ’session.use_trans_sid’, it has been mentioned in PHP manual. “If you link to an external site, the URL including the session id might be stored in the external site’s referrer logs….”

I understand your solution, but it’s too complex. I don’t think it’s the best solution. The timestamp isn’t unique. If there are two clients get the same timestamp, but different image codes, it will fail. The database is a problem. WP has too many queries now, and it cause some sites run slowly.

By: _ck_

_ck_ — Sun, 06 Aug 2006 13:55:34 +0000

I now have a working prototype of your code using mysql and it work very nicely. No more cookies needed and with a true table it can check/block people hammering on the images to try to crack it (or your system). I added IP matching to boost the uniqueness and it should work.

As far as slowness, some people report that turning on sessions actually slows things down. Since the security image is only for unregistered users it shouldn’t be too bad.

With some extra code you could actually give the option of sessions OR using mysql for no cookies. As far as I can tell, your code will be the FIRST for wordpress that does captcha without needing cookies

I’ll email you a copy or post a downloadable link here in a minute.

ps. The problem with the $comment_type was that NULL and “does not exist” are not always the same in PHP? At least I think that’s what it is. In the PHP manual “==” and “===” mean different things.

By: Nio

Nio — Sun, 06 Aug 2006 14:06:25 +0000

Congratulation! I’ll learn your codes.

Unregistered users are far more than registered users in my site. I think many blogs are the same as mine.

I know the difference with “==” and “===”, but I think pingback $comment_type value is “pingback”, and “!$comment_type” means the “comment” in WP.

By: _ck_

_ck_ — Sun, 06 Aug 2006 14:51:35 +0000

Okay I just emailed you my mod.
Here it is for anyone else interested:
http://www.savefile.com/files.php?fid=7140283
(rename the .phps to .php)
————————-
Default expire time is set to 30 minutes but you can
decrease it if you’d like (search for 1800)

The needed mysql table is created on plugin activation.
Note that it will purge any existing table of it’s own on activation
so if you activate/deactivate alot it will cause visitors failed posts.

Be sure to deactivate the non-mysql version first,
you can’t run them both at the same time
———————-

By: Testing

Testing — Mon, 14 Aug 2006 00:39:20 +0000

testttt

By: Mr. Go

Mr. Go — Tue, 15 Aug 2006 04:14:00 +0000

what is it?

By: xinquan

xinquan — Thu, 17 Aug 2006 02:34:30 +0000

用了你的那个anti-spam image plugin
但是不知道那里才能点击广告？

By: Wojtek

Wojtek — Thu, 17 Aug 2006 04:52:39 +0000

Wrrrr….

I love the idea of this plug in but. Pictuire doesnt appear in my case. I checked my GD and I have GD 2.something. I van see the line in the comment block butr I cannot see the image. I read everything here, checked and still nothing.
When I put http://blog.wojtekgil.com/index.php?image=1 I get bunch of lines with errors.
Help!

By: Wojtek

Wojtek — Thu, 17 Aug 2006 05:35:11 +0000

…and I’m on WordPress 2.0.4

By: Nio

Nio — Thu, 17 Aug 2006 06:03:13 +0000

hi, Wojtek.
I seen that your index.php had sent “” before the image. Did you write this code in somewhere?

By: Wojtek

Wojtek — Thu, 17 Aug 2006 06:08:56 +0000

I’m not sutre what you mean but I had to put the line ”
ID); ?>” muself. Are you suggesting I put it in a wrong place?

By: Wojtek

Wojtek — Thu, 17 Aug 2006 06:28:38 +0000

I messed up the previous post. I will check my index as much as I can, as my knowledge allows.
Thanks and I will be back, probably

By: Nio

Nio — Thu, 17 Aug 2006 06:31:13 +0000

Sorry, I forgot to escape html. The line is””.

By: Wojtek

Wojtek — Thu, 17 Aug 2006 06:32:11 +0000

OK!
Got it to work!
I had favicon line in my index. when I removed it everything works perfect! (at least now) THANK YOU!

By: delvig

delvig — Fri, 18 Aug 2006 06:59:50 +0000

Great plugin! I got it work effortlessly with my fresh weblog. With the joint force of Akismet, spams gotta leave me alone for a while

Thanks,
delvig

By: pix

pix — Fri, 18 Aug 2006 11:17:28 +0000

Thanks for plug! I like it!

By: Brad Gessler

Brad Gessler — Mon, 21 Aug 2006 20:12:28 +0000

Finally! I found a spam system that works! Thank you!

By: Mr, Go

Mr, Go — Wed, 30 Aug 2006 23:49:42 +0000

Hi Nio, If the version 4 of Anti Spam works well, would you still recommend I upgrade to the version 5? By the way, what is the difference between the 4, and 5?

By: Nio

Nio — Thu, 31 Aug 2006 01:28:21 +0000

Version 0.5 just fixed the bug that trackback and pingback couldn’t work. If you need trackback function, it’s recommended to upgrade to the version 0.5.

By: lawrence sheed

lawrence sheed — Wed, 06 Sep 2006 02:08:38 +0000

谢谢你！

Hopefully this stops all the spammers - > 500 spammy comments this month, sigh…

Lawrence / www.shanghaiguide.com

By: test

test — Sat, 09 Sep 2006 08:37:39 +0000

thx

By: steveo

steveo — Sun, 10 Sep 2006 21:16:46 +0000

just testing your system. i need something like this!

thanks

By: makrobiotika

makrobiotika — Tue, 12 Sep 2006 21:31:45 +0000

Thanks a lot for the captcha. This one is much better than the first captcha project for the Wordpress. I like it.

By: mafeitao

mafeitao — Fri, 22 Sep 2006 12:42:22 +0000

September 22, 2006
Anti Spam Image 被18ie.com 采用
Filed under: Uncategorized — mft @ 8:24 pm
Anti Spam Image 也是一个利用图形验证的反spam的插件。Anti Spam Image最新版是 0.5，在wordpress 2.0 里可以用。安装非常简单，只有2步。1) 上传到plugins目录， 2)active。

下载地址是 http://nio.infor96.com/archives/369

结论：Anti Spam Image 被18ie.com 采用，感觉还不错。

By: mafeitao

mafeitao — Fri, 22 Sep 2006 12:44:52 +0000

多谢。

By: mafeitao

mafeitao — Fri, 22 Sep 2006 12:46:06 +0000

http://www.18ie.com/wordpress/?p=7#respond

By: mafeitao

mafeitao — Fri, 22 Sep 2006 12:49:17 +0000

我以前写过1个汉字OCR软件,叫mini ocr.也算是对ocr有所了解,感觉这个图像加密算法稍微简单了一点. 应该再复杂些,就更好了.马飞涛

By: 冯蕾蕾

冯蕾蕾 — Mon, 09 Oct 2006 01:46:35 +0000

WordPress:version: 2.0.4(无中文插件)
Theme:Keso 主题
Anti Spam Image：version: 0.5

只需激活插件即可。赞一个。

By: Tudor

Tudor — Fri, 13 Oct 2006 08:43:36 +0000

Hi, I have the following problem: when I activate the plugin and try to post a comment it says: ‘Comments are closed.’ I don’t know why.
Thank you for your asistance!

By: Tudor

Tudor — Fri, 13 Oct 2006 08:50:41 +0000

In Administration Pannel-> Options_> Discussion the ‘allow people to post comments’ is checked

By: rena

rena — Mon, 16 Oct 2006 03:58:52 +0000

OK，it is good!

By: rena

rena — Mon, 16 Oct 2006 03:59:35 +0000

如果加上一个验证就更好了！

见：http://www.revel.cn/blog/?p=104

By: Tudor

Tudor — Mon, 16 Oct 2006 14:53:32 +0000

Sorry i don’t understand your answer rena. Plese write in english.

By: Nio

Nio — Tue, 17 Oct 2006 13:48:35 +0000

hi, Tudor. It seems because of your theme. When you submit a comment, it posts data to the server in AJAX way. So maybe you should modify the AJAX server side codes. Or try another theme, such as “classic”, “default” and so on.

By: Tudor

Tudor — Tue, 17 Oct 2006 14:05:14 +0000

Thanks for your reply Neo. unfortunatelly I don’t know how to modify the AJAZ server side codes. I personalized this theme so I don’t think I will change it. Thanks again for your answer.

By: djmitch

djmitch — Mon, 23 Oct 2006 15:26:44 +0000

Hi to all … and thank you for this nice plug in…

I run a dj web site dedicated to minimal electronic music and I use wordpress to manage my content… I have installed your plugin from more than one mounth, but recently I have always some comments to delete because they are waiting moderation, ( for my luck ! ) and are not stopped by your plugin like before..

So maybe these are humans or spammers have understand how read the security code ?

Did you have any up-grade to solve this ??

Thank you for any replay.

Cheers

By: Fan of Don Lapre

Fan of Don Lapre — Tue, 24 Oct 2006 21:53:04 +0000

I like the Captcha more than any other for spam filtration.

By: Kimberley

Kimberley — Thu, 26 Oct 2006 17:47:55 +0000

thank you so much for this plug-in

By: Roger

Roger — Fri, 27 Oct 2006 23:44:18 +0000

Thank you very much for the plugin. It is most appreciated.

By: Melodie

Melodie — Sat, 11 Nov 2006 15:04:02 +0000

Thanks for great plugin.

By: Ming

Ming — Wed, 15 Nov 2006 05:49:40 +0000

Is there any reason that the session doesn’t pass value correctly? I have two news blog websites which I thought the configurations of PHP are the same. However one works fine one doesn’t. It always says the security code is wrong. I tested it and found it actually didn’t pass the session value at all so it can not compare the value i entered with the image code. What could be wrong? Could you help?

By: Nio

Nio — Wed, 15 Nov 2006 11:09:17 +0000

hi Ming, did you use subdomain? I think it’s because of session.cookie_domain.

By: Berend Raap

Berend Raap — Tue, 05 Dec 2006 10:34:30 +0000

Hi Nio,

I have just installed your anti spam image plugin and it works fine. Many thanks, I use the typo theme from Sunaryo Hadi and he told me that possibly you could also provide this plugin for a contact form. Do you have that for me?

Cheers, Berend Raap

By: Nio

Nio — Wed, 06 Dec 2006 02:49:31 +0000

Hi Berend Raap,

I have sent it to you.

By: Yaba

Yaba — Thu, 07 Dec 2006 20:01:19 +0000

Hi Nio,

like djming wrote I am also using your plugin for several months and it was quite since a few weeks. Suddenly I have to moderate comments on a daily basis.

Did someone manage to parse the image? Could an update help, which obfusicates the image even more?

Best regards from Germany,
Yaba

By: jacky

jacky — Tue, 12 Dec 2006 04:48:58 +0000

无法显示验证图片是什么原因?

By: Nio

Nio — Tue, 12 Dec 2006 08:01:55 +0000

hi jacky,
貌似在输出图片之前你的文件输出了一些东西，导致图片无法正常输出，你可以试试这个url：
http://www.jackyhere.com/index.php?image=1

By: Cristian

Cristian — Tue, 12 Dec 2006 18:05:06 +0000

Hy Nio.

I seem to be having some problems with your plugin … i recently wanted to try and install another plugin to my blog, post-ratings .. and when i activate it the line on the web page with the input of the code and the image is gone … the image shows up when trying the url with …/index.php?image=1 but on the comments page it completely dissapeared. this happens when i activate the post ratings plugin even if the line implementing the ratings function is commented out from index.php.

This is the plugin i’m talking about http://www.lesterchan.net/others/downloads.php?id=20

Can you help me at all with this one ?! thanks …