User Tools

Site Tools


captcha_alternative

Differences

This shows you the differences between two versions of the page.

Link to this comparison view

Both sides previous revision Previous revision
Next revision
Previous revision
captcha_alternative [2014/04/19 17:34]
admin [Step 1.]
captcha_alternative [2014/04/29 16:10] (current)
admin [Captcha Alternative]
Line 10: Line 10:
  
 **Can I use both Captcha and a Bot Trap?**\\ **Can I use both Captcha and a Bot Trap?**\\
-Yes, however if you're using a Bot Trap it's not really necessary to use Captcha.+Yes, however if you're using a Bot Trap it's not really necessary to use Captcha. ​However, if you decide not to use Captchas it's especially important not to allow non-members to post comments on the site. It's recommended that you don't allow non-members (visitors) to write comments under any conditions which allows them to post comments on member'​s profiles, photos, and blogs. This just opens your site up for potential spam, especially by bots who have the ability to get past Captchas. Therefore to only allow members to post comments in the admin go to the **Admin >> General Settings >> Access Levels** section and make sure that "write comments"​ is unchecked under the non-members column:\\ 
 +>>​{{:​admin:​write_comments.png}}\\ 
 + 
 +Captchas can be turned on or off in the **Admin >> General Settings >> Features and Options** section, and the first item listed under Basic Features.\\ 
 +>>​{{:​captchas.png}}\\
  
 **Note:** Captchas and Bot Traps are designed for "​bot"​ spammers and won't prevent "​human"​ spammers from signing up. Bot spammers are by far the most common and annoying as they can complete a sign up in a matter of seconds. Bots are relentless and once they find and discover that they successfully sign up and spam your site, they will continue to return and often cause your site to have dozens or even hundreds of junk sign ups a day. **Note:** Captchas and Bot Traps are designed for "​bot"​ spammers and won't prevent "​human"​ spammers from signing up. Bot spammers are by far the most common and annoying as they can complete a sign up in a matter of seconds. Bots are relentless and once they find and discover that they successfully sign up and spam your site, they will continue to return and often cause your site to have dozens or even hundreds of junk sign ups a day.
Line 16: Line 20:
  
 ==== Step 1. ==== ==== Step 1. ====
-First we create the field for our bot trap.\\ +First we create the field for our bot trap, the process is the same as creating any profile field you want included at registration.\\ 
-Go to your Etano Admin >> Site Setup >> Profile Fields. +Go to your Etano **Admin >> Site Setup >> Profile Fields** section.\\ 
-Then add a new "​Textfield"​\\ +Then add a new "**Textfield**"\\ 
-{{:​trap_add_textfield.png}}\\+>>{{:​trap_add_textfield.png}}\\
  
-Then we create the field. ​Only add or select items as shown below:\\ +Then we create the field. ​**ONLY** ​add or select ​the items shown below, leave all others unchecked or empty:\\ 
-{{:​trap_profile_field.png}}\\+>>{{:​trap_profile_field.png}}\\
  
-We have labelled the field as "​**First Name**", ​something ​that will hopefully entice the bot to fill in. You can change this to whatever you want, but it's important that you don't label the field the same as a profile field that you're already using.+We have labelled the field as "​**First Name**", ​this can be anything ​that will hopefully entice the bot to fill in the field. You can change this label to whatever you want such as "​Name"​"Your Name", "​Website,​ etc. It's important that you don't label the field the same as a profile field that you're already using.
  
 The "​**Help Text for User**"​ field is **optional**,​ this is a fall back just in case a legit human has CSS turned off and they will see the hidden field meant for bots, which will be rare, and if a user has CSS turned off your site won't be very usable to them anyway. The "​**Help Text for User**"​ field is **optional**,​ this is a fall back just in case a legit human has CSS turned off and they will see the hidden field meant for bots, which will be rare, and if a user has CSS turned off your site won't be very usable to them anyway.
  
-**IMPORTANT:​** Make a note of the field number for the new field you just created as it will be used in other steps as we go along: +**IMPORTANT:​** Make a note of the field number for the new field you just created as it will be used in other steps as we go along, the new profile field number may differ than what's used as an example in these instructions
-{{:​trap_field_number.png}}+>>{{:​trap_field_number.png}}
  
 Once you're done creating the field don't forget to regenerate your profile fields:\\ Once you're done creating the field don't forget to regenerate your profile fields:\\
-{{:​regenerate_fields.jpg}}\\+>>{{:​regenerate_fields.jpg}}\\
  
-At this point you can go to your join (signup) page and check to see if the new field is showing like this:\\ +**TEST** - At this point you can go to your join (signup) page and check to see if the new field is showing like this:\\ 
-{{:​trap_field.png}}\\+>>{{:​trap_field.png}}\\
 If it appears like this then proceed to the next step. If it appears like this then proceed to the next step.
  
Line 44: Line 48:
  
 Next edit the **skins_site/​def/​join.html** file by adding (copy & paste) the following line of code into the file:\\ Next edit the **skins_site/​def/​join.html** file by adding (copy & paste) the following line of code into the file:\\
->>​%%<​%%input type="​hidden"​ name="​redirect_thanks_url"​ value="​{tplvars.baseurl}/​login.php"​ /%%>%% \\+>>**%%<​%%input type="​hidden"​ name="​redirect_thanks_url"​ value="​{tplvars.baseurl}/​login.php"​ /%%>%%** \\
  
 Add the above line of code directly above the line of code for the "​fieldset controls"​ as shown below:\\ Add the above line of code directly above the line of code for the "​fieldset controls"​ as shown below:\\
Line 74: Line 78:
    
 The code MUST be added in the exact spot in the file as shown below:\\ The code MUST be added in the exact spot in the file as shown below:\\
-{{:​trap_join_php.png}}\\+>>{{:​trap_join_php.png}}\\
  
-At this point you can now test it, go to your join (signup) page and fill out the registration form including the bot trap field.\\ +**TEST** - At this point you can now test it, go to your join (signup) page and fill out the registration form including the bot trap field we created.\\ 
-{{:​trap_field_filled.png}}\\+>>{{:​trap_field_filled.png}}\\
 When you click the "​Save"​ button it should redirect you to the Login page, or to another site if you decided to change the redirect as noted in Step 2. When you click the "​Save"​ button it should redirect you to the Login page, or to another site if you decided to change the redirect as noted in Step 2.
  
-If that worked, then try filling out the registration form again, this time without filling in the bot trap field to see if it's successful in creating ​a new member.\\+If that worked, then try filling out the registration form again, this time without filling in the bot trap field to see if it successfully creates ​a new member.\\
  
 Once you've tested the registration and confident it's working as it should, then proceed to the next step where we'll hide the bot trap field. Once you've tested the registration and confident it's working as it should, then proceed to the next step where we'll hide the bot trap field.
Line 114: Line 118:
  
 Then click the "Add new" link:\\ Then click the "Add new" link:\\
-{{:​trap_add_limit.png}}+>>{{:​trap_add_limit.png}}
  
 Then set it up as follows:\\ Then set it up as follows:\\
-{{:​trap_create_limit.png}}\\+>>{{:​trap_create_limit.png}}\\
  
 **Text for the Error Message:** Sorry, you have exceeded the number of login attempts permitted within a 10 minute span. Please try again later. **Text for the Error Message:** Sorry, you have exceeded the number of login attempts permitted within a 10 minute span. Please try again later.
  
captcha_alternative.1397928850.txt.gz · Last modified: 2014/04/19 17:34 (external edit)