Linux 软件免费装
Banner图

AntiSpam for Contact Form 7

开发者 codekraft
gardenboi
更新时间 2024年7月2日 20:01
PHP版本: 5.6 及以上
WordPress版本: 6.5.5
版权: GPLv2 or later
版权网址: 版权信息

标签

honeypot security contact form 7 blacklist geoip antispam

下载

0.6.3 0.2.4 0.2.6 0.3.0 0.4.2 0.4.3 0.6.1 0.4.5 0.6.2 0.2.0 0.2.1 0.2.2 0.2.3 0.1.0 0.2.7 0.2.5 0.4.4 0.6.0

详情介绍:

Are you unsatisfied with your current antispam solution for Contact Form 7? It might be using an ineffective method to combat the specific type of bot attacks you're facing. Fortunately, I have a solution for you! Antispam for Contact Form 7 is a simple yet highly effective plugin that protects your mailbox from bot flooding. Say goodbye to tedious configurations and captchas, which often lead to reduced conversions and inconvenience for genuine users. Our plugin utilizes a combination of on-page and off-page bot traps, along with an auto-learning mechanism powered by a statistical "Bayesian" spam filter called B8. CF7-AntiSpam seamlessly integrates with Flamingo and enhances its functionality. When both plugins are installed, Flamingo gains additional controls, and an extra dashboard widget is enabled.

安装:

  1. Upload the entire cf7-antispam folder to the /wp-content/plugins/ directory.
  2. Activate the plugin through the 'Plugins' menu in WordPress, you MUST have Contact Form 7 installed and enabled.
  3. Setup advanced settings in Contact Form 7 in the same way you do for flamingo, but add also 'flamingo_message: "[your-message]"' - reference https://contactform7.com/save-submitted-messages-with-flamingo/
  4. The configuration page for this plugin is located in the submenu "Antispam" under the Contact Form 7 menu

常见问题:

Will I finally be 100% protected from spam?

NO, nobody can guarantee that, and anyone who tells you that is lying. But luckily, bots are limited by the fact that they don't use a real browser and they use fairly repetitive routes which can be recognised.

Why I need to install Flamingo to get the full AntiSpam manager functionalities?

Contact form 7 is made this way, the main plugin is made to be extended with other modules and this has resulted in many 3rd party plugins like mine! There is already a module for handling received emails, why should I redo it? And, in this way I can focus on my plugin, I believe the "power" of cf7 is just that and I invite you to check how many other nice and free extensions there are!

Why are there so many antispam-tests?

Because there are so many types of bots in this way detect them all! Phantom-based bots fail with fingerprinting but are proficient with honeypots, while bots written in python fail with honeypots but are proficient with metadata forgery!

How spam score works

The system used to evaluate the e-mail is a non-proportional scoring system and each test have a different score (and can be customised with the advanced settings). When the mail score is equal to or greater than 1 it is considered spam.

What do you mean by Standard Spam Filters

Some standard test are Elapsed time, Auto-Blacklisting, Prohibited IP/strings and, in addition, we got some advanced test like HoneyPots, HoneyForms and the browser FingerPrinting.

*HoneyForm, or you mean Honeypot?

No, I mean HoneyForm! This is a hidden, bogus form that bots will fill, as it is part of the page code for them and they rarely check the visibility of an element. While honeypots can be easily spotted by some bots, these forms are not because they have the same characteristics as a 'normal' form, and it is impossible to distinguish them without truly visiting the page. This is the first time they have been used, at the moment they seem to work and be effective, but consider this an experimental feature! (ps let me know your feedback about)

But the standard Honeypot?

We also have honeypots, to activate them just click on a checkbox, and they will be generated automatically for each text field. The only thing you need to check in the CF7A options page is the name of the fields used that need to differ with the names used in contact form 7.

DNSBL... What?

After that the sender ip will be searched into DNS-based Black-hole server to found if that ip is delisted for spam. 10 server are already set as default, but you can add or remove as you like, there are 50 server available (list below).

What is B8? How it works?

B8 cuts the text to classify to pieces, extracting stuff like email addresses, links and HTML tags and of course normal words. For each such token, it calculates a single probability for a text containing it being spam, based on what the filter has learned so far. B8 is a free software form Tobias Leupold, who I thank for making it available to everyone.

Filters

Before processing the email add_filter('cf7a_message_before_processing', 'my_message_before_processing', 10, 2 ); Before processing the email with bayesian filter add_filter('cf7a_before_b8', 'my_before_b8', 10, 3 ); Add your own spam filter add_filter('cf7a_additional_spam_filters', 'my_additional_spam_filters', 10, 3 ); Add some content when resending a mail (useful to add a message like "this was spammed" or the original mail date/time) add_filter('cf7a_before_resend_email', 'my_before_resend_email', 10, 3 );

DEBUG

define( 'CF7ANTISPAM_DEBUG', true); Enables debug mode (wp-debug has to be enabled) - verbose mode, prints email analysis results into wp-content/debug.log define( 'CF7ANTISPAM_DEBUG_EXTENDED', true); Enable extended debug mode ("CF7ANTISPAM_DEBUG" has to be enabled) - disable autoban, enable advanced logging, when you uninstall the plugin, the word database, blacklist and options are not deleted.

更新日志:

0.6.3 0.6.2 0.6.0 0.5.0 0.4.6 0.4.5 0.4.4 0.4.3 0.4.2 0.4.1 0.4.0 0.3.0 0.2.7 0.2.6 0.2.5 0.2.4 0.2.3 0.2.2 0.2.1 0.2.0 0.1.1 0.1.0 0.0.1