Spam Protection tab
Akismet Spam protection for comments has been added to Tiki8, and multiple IP banning from Comment moderation or Action log has been added in Tiki9.
- Overview
- Use this tab to enable anti-spam CAPTCHAs and protect email address links.
- To Access
- From the Security Admin page, click the Spam Protection tab.
- Note
- When enabled, the following Tiki features are protected:
- wiki page edits
- wiki page comments
- forum posts and replies
- tracker item comments
- freetags
- calendar items
- newsletter subscriptions
ReCaptcha 3 support starts in Tiki20
Please note, that as opposed to the information in the generated table below, in Tiki 12.x there is only ReCaptcha version 1 (which was deprecated on March 30th 2018) available.
| Option | Description | Default |
|---|---|---|
| Anonymous editors must enter anti-bot code (CAPTCHA) | Use CAPTCHA to ensure that anonymous input is from a person. | Enabled |
| CAPTCHA image word length | Number of characters the CAPTCHA will display. | 6 characters |
| CAPTCHA image width | Width of the CAPTCHA image in pixels. | 180 pixels |
| CAPTCHA image noise | Level of noise of the CAPTCHA image. Choose a smaller number for less noise and easier reading. |
100 |
| Use reCAPTCHA | Use reCAPTCHA, a specialized captcha service, instead of default CAPTCHA You will need to register at http://www.google.com/recaptcha |
Disabled |
| Site key | reCAPTCHA public key obtained after registering. | None |
| Secret key | reCAPTCHA private key obtained after registering. | None |
| reCAPTCHA theme | Choose a theme for the reCAPTCHA widget. Clean | Black Glass | Red | White |
Clean |
| Version | reCAPTCHA version. 1.0 | 2.0 | 3.0 |
2.0 |
| CAPTCHA questions | Requires anonymous visitors to enter the answer to a question. | Disabled |
| CAPTCHA questions and answers | Add some simple questions that only humans should be able to answer, in the format: "Question?: Answer" with one per line One question per line with a colon separating the question and answer |
None |
| Protect email against spam | Protect email against spam submissions. Protect email against spam currently does not operate in pages edited in WYSIWYG mode (Tiki 6.1) |
Enabled |
| Add "rel=nofollow" to external links | Nofollow is used to instruct some search engines that the link should not influence the ranking of the link's target in the search engine's index. | Disabled |
| Banning system | Deny access to specific users based on username, IP, and date/time range. | Disabled |
| Ban usernames and emails | Banning rules use both email and username to match rules. | Disabled |
| Attempts number | Number of attempts user is allowed to login incorrectly before banning them from further attempts. | 5 |
| Banning system | The duration of the incorrect login attempts ban in minutes. | 30 |
| Comments moderation | Enables the admin or other authorized group member to validate comments before they are visible | Disabled |
| Use Akismet to filter comments | Prevent comment spam by using the Akismet service to determine if the comment is spam. If comment moderation is enabled, Akismet will indicate if the comment is to be moderated or not. If there is no comment moderation, the comment will be rejected if considered to be spam. | Disabled |
| Akismet API Key | Key required for the Akismet comment spam prevention. Obtain this key by registering your site at http://akismet.com |
None |
| Filter spam for registered users | Activate spam filtering for registered users as well. Useful if your site allows anyone to register without screening. | Disabled |
| Require passcode to register | Users must enter an alphanumeric code to register. The site administrator must inform users of this code. This is to restrict registration to invited users. | Disabled |
| Passcode | Alphanumeric code required to complete the registration | None |
| Show passcode on registration form | Displays the required passcode on the registration form. This is helpful for legitimate users who want to register while making it difficult for automated robots because the passcode is unique for each site and because it is displayed in JavaScript. | Disabled |
| Registration page key | To register, users need to go to, for example: tiki-register.php?key=yourregistrationkeyvalue Key required to be on included the URL to access the registration page (if not empty). |
None |
| Option | Description | Default |
|---|---|---|
| Anonymous editors must enter anti-bot code (CAPTCHA) | Use CAPTCHA to ensure that anonymous input is from a person. | Enabled |
| CAPTCHA image word length | Number of characters the CAPTCHA will display. | 6 characters |
| CAPTCHA image width | Width of the CAPTCHA image in pixels. | 180 pixels |
| CAPTCHA image noise | Level of noise of the CAPTCHA image. Choose a smaller number for less noise and easier reading. |
100 |
| Use reCAPTCHA | Use reCAPTCHA, a specialized captcha service, instead of default CAPTCHA You will need to register at http://www.google.com/recaptcha |
Disabled |
| Site key | reCAPTCHA public key obtained after registering. | None |
| Secret key | reCAPTCHA private key obtained after registering. | None |
| reCAPTCHA theme | Choose a theme for the reCAPTCHA widget. Clean | Black Glass | Red | White |
Clean |
| Version | reCAPTCHA version. 1.0 | 2.0 | 3.0 |
2.0 |
| CAPTCHA questions | Requires anonymous visitors to enter the answer to a question. | Disabled |
| CAPTCHA questions and answers | Add some simple questions that only humans should be able to answer, in the format: "Question?: Answer" with one per line One question per line with a colon separating the question and answer |
None |
| Protect email against spam | Protect email against spam submissions. Protect email against spam currently does not operate in pages edited in WYSIWYG mode (Tiki 6.1) |
Enabled |
| Add "rel=nofollow" to external links | Nofollow is used to instruct some search engines that the link should not influence the ranking of the link's target in the search engine's index. | Disabled |
| Banning system | Deny access to specific users based on username, IP, and date/time range. | Disabled |
| Ban usernames and emails | Banning rules use both email and username to match rules. | Disabled |
| Attempts number | Number of attempts user is allowed to login incorrectly before banning them from further attempts. | 5 |
| Banning system | The duration of the incorrect login attempts ban in minutes. | 30 |
| Comments moderation | Enables the admin or other authorized group member to validate comments before they are visible | Disabled |
| Use Akismet to filter comments | Prevent comment spam by using the Akismet service to determine if the comment is spam. If comment moderation is enabled, Akismet will indicate if the comment is to be moderated or not. If there is no comment moderation, the comment will be rejected if considered to be spam. | Disabled |
| Akismet API Key | Key required for the Akismet comment spam prevention. Obtain this key by registering your site at http://akismet.com |
None |
| Filter spam for registered users | Activate spam filtering for registered users as well. Useful if your site allows anyone to register without screening. | Disabled |
| Require passcode to register | Users must enter an alphanumeric code to register. The site administrator must inform users of this code. This is to restrict registration to invited users. | Disabled |
| Passcode | Alphanumeric code required to complete the registration | None |
| Show passcode on registration form | Displays the required passcode on the registration form. This is helpful for legitimate users who want to register while making it difficult for automated robots because the passcode is unique for each site and because it is displayed in JavaScript. | Disabled |
| Registration page key | To register, users need to go to, for example: tiki-register.php?key=yourregistrationkeyvalue Key required to be on included the URL to access the registration page (if not empty). |
None |
| Option | Description | Default |
|---|---|---|
| Anonymous editors must enter anti-bot code (CAPTCHA) | Use CAPTCHA to ensure that anonymous input is from a person. | Enabled |
| CAPTCHA image word length | Number of characters the CAPTCHA will display. | 6 characters |
| CAPTCHA image width | Width of the CAPTCHA image in pixels. | 180 pixels |
| CAPTCHA image noise | Level of noise of the CAPTCHA image. Choose a smaller number for less noise and easier reading. |
100 |
| Use reCAPTCHA | Use reCAPTCHA, a specialized captcha service, instead of default CAPTCHA You will need to register at http://www.google.com/recaptcha |
Disabled |
| Site key | reCAPTCHA public key obtained after registering. | None |
| Secret key | reCAPTCHA private key obtained after registering. | None |
| reCAPTCHA theme | Choose a theme for the reCAPTCHA widget. Clean | Black Glass | Red | White |
Clean |
| Version | reCAPTCHA version. 1.0 | 2.0 | 3.0 |
2.0 |
| CAPTCHA questions | Requires anonymous visitors to enter the answer to a question. | Disabled |
| CAPTCHA questions and answers | Add some simple questions that only humans should be able to answer, in the format: "Question?: Answer" with one per line One question per line with a colon separating the question and answer |
None |
| Protect email against spam | Protect email against spam submissions. Protect email against spam currently does not operate in pages edited in WYSIWYG mode (Tiki 6.1) |
Enabled |
| Add "rel=nofollow" to external links | Nofollow is used to instruct some search engines that the link should not influence the ranking of the link's target in the search engine's index. | Disabled |
| Banning system | Deny access to specific users based on username, IP, and date/time range. | Disabled |
| Ban usernames and emails | Banning rules use both email and username to match rules. | Disabled |
| Attempts number | Number of attempts user is allowed to login incorrectly before banning them from further attempts. | 5 |
| Banning system | The duration of the incorrect login attempts ban in minutes. | 30 |
| Comments moderation | Enables the admin or other authorized group member to validate comments before they are visible | Disabled |
| Use Akismet to filter comments | Prevent comment spam by using the Akismet service to determine if the comment is spam. If comment moderation is enabled, Akismet will indicate if the comment is to be moderated or not. If there is no comment moderation, the comment will be rejected if considered to be spam. | Disabled |
| Akismet API Key | Key required for the Akismet comment spam prevention. Obtain this key by registering your site at http://akismet.com |
None |
| Filter spam for registered users | Activate spam filtering for registered users as well. Useful if your site allows anyone to register without screening. | Disabled |
| Require passcode to register | Users must enter an alphanumeric code to register. The site administrator must inform users of this code. This is to restrict registration to invited users. | Disabled |
| Passcode | Alphanumeric code required to complete the registration | None |
| Show passcode on registration form | Displays the required passcode on the registration form. This is helpful for legitimate users who want to register while making it difficult for automated robots because the passcode is unique for each site and because it is displayed in JavaScript. | Disabled |
| Registration page key | To register, users need to go to, for example: tiki-register.php?key=yourregistrationkeyvalue Key required to be on included the URL to access the registration page (if not empty). |
None |
| Option | Description | Default |
|---|---|---|
| Anonymous editors must enter anti-bot code (CAPTCHA) | Use CAPTCHA to ensure that anonymous input is from a person. | Enabled |
| CAPTCHA image word length | Number of characters the CAPTCHA will display. | 6 characters |
| CAPTCHA image width | Width of the CAPTCHA image in pixels. | 180 pixels |
| CAPTCHA image noise | Level of noise of the CAPTCHA image. Choose a smaller number for less noise and easier reading. |
100 |
| Use reCAPTCHA | Use reCAPTCHA, a specialized captcha service, instead of default CAPTCHA You will need to register at http://www.google.com/recaptcha |
Disabled |
| Site key | reCAPTCHA public key obtained after registering. | None |
| Secret key | reCAPTCHA private key obtained after registering. | None |
| reCAPTCHA theme | Choose a theme for the reCAPTCHA widget. Clean | Black Glass | Red | White |
Clean |
| Version | reCAPTCHA version. 1.0 | 2.0 | 3.0 |
2.0 |
| CAPTCHA questions | Requires anonymous visitors to enter the answer to a question. | Disabled |
| CAPTCHA questions and answers | Add some simple questions that only humans should be able to answer, in the format: "Question?: Answer" with one per line One question per line with a colon separating the question and answer |
None |
| Protect email against spam | Protect email against spam submissions. Protect email against spam currently does not operate in pages edited in WYSIWYG mode (Tiki 6.1) |
Enabled |
| Add "rel=nofollow" to external links | Nofollow is used to instruct some search engines that the link should not influence the ranking of the link's target in the search engine's index. | Disabled |
| Banning system | Deny access to specific users based on username, IP, and date/time range. | Disabled |
| Ban usernames and emails | Banning rules use both email and username to match rules. | Disabled |
| Comments moderation | Enables the admin or other authorized group member to validate comments before they are visible | Disabled |
| Use Akismet to filter comments | Prevent comment spam by using the Akismet service to determine if the comment is spam. If comment moderation is enabled, Akismet will indicate if the comment is to be moderated or not. If there is no comment moderation, the comment will be rejected if considered to be spam. | Disabled |
| Akismet API Key | Key required for the Akismet comment spam prevention. Obtain this key by registering your site at http://akismet.com |
None |
| Filter spam for registered users | Activate spam filtering for registered users as well. Useful if your site allows anyone to register without screening. | Disabled |
| Require passcode to register | Users must enter an alphanumeric code to register. The site administrator must inform users of this code. This is to restrict registration to invited users. | Disabled |
| Passcode | Alphanumeric code required to complete the registration | None |
| Show passcode on registration form | Displays the required passcode on the registration form. This is helpful for legitimate users who want to register while making it difficult for automated robots because the passcode is unique for each site and because it is displayed in JavaScript. | Disabled |
| Registration page key | To register, users need to go to, for example: tiki-register.php?key=yourregistrationkeyvalue Key required to be on included the URL to access the registration page (if not empty). |
None |
| Option | Description | Default |
|---|---|---|
| Anonymous editors must enter anti-bot code (CAPTCHA) | Use CAPTCHA to ensure that anonymous input is from a person. | Enabled |
| CAPTCHA image word length | Number of characters the CAPTCHA will display. | 6 characters |
| CAPTCHA image width | Width of the CAPTCHA image in pixels. | 180 pixels |
| CAPTCHA image noise | Level of noise of the CAPTCHA image. Choose a smaller number for less noise and easier reading. |
100 |
| Use reCAPTCHA | Use reCAPTCHA, a specialized captcha service, instead of default CAPTCHA You will need to register at http://www.google.com/recaptcha |
Disabled |
| Site key | reCAPTCHA public key obtained after registering. | None |
| Secret key | reCAPTCHA private key obtained after registering. | None |
| reCAPTCHA theme | Choose a theme for the reCAPTCHA widget. Clean | Black Glass | Red | White |
Clean |
| Version | reCAPTCHA version. 1.0 | 2.0 | 3.0 |
2.0 |
| CAPTCHA questions | Requires anonymous visitors to enter the answer to a question. | Disabled |
| CAPTCHA questions and answers | Add some simple questions that only humans should be able to answer, in the format: "Question?: Answer" with one per line One question per line with a colon separating the question and answer |
None |
| Protect email against spam | Protect email against spam submissions. Protect email against spam currently does not operate in pages edited in WYSIWYG mode (Tiki 6.1) |
Enabled |
| Add "rel=nofollow" to external links | Nofollow is used to instruct some search engines that the link should not influence the ranking of the link's target in the search engine's index. | Disabled |
| Banning system | Deny access to specific users based on username, IP, and date/time range. | Disabled |
| Attempts number | Number of attempts user is allowed to login incorrectly before banning them from further attempts. | 5 |
| Banning system | The duration of the incorrect login attempts ban in minutes. | 30 |
| Comments moderation | Enables the admin or other authorized group member to validate comments before they are visible | Disabled |
| Use Akismet to filter comments | Prevent comment spam by using the Akismet service to determine if the comment is spam. If comment moderation is enabled, Akismet will indicate if the comment is to be moderated or not. If there is no comment moderation, the comment will be rejected if considered to be spam. | Disabled |
| Akismet API Key | Key required for the Akismet comment spam prevention. Obtain this key by registering your site at http://akismet.com |
None |
| Filter spam for registered users | Activate spam filtering for registered users as well. Useful if your site allows anyone to register without screening. | Disabled |
| Require passcode to register | Users must enter an alphanumeric code to register. The site administrator must inform users of this code. This is to restrict registration to invited users. | Disabled |
| Passcode | Alphanumeric code required to complete the registration | None |
| Show passcode on registration form | Displays the required passcode on the registration form. This is helpful for legitimate users who want to register while making it difficult for automated robots because the passcode is unique for each site and because it is displayed in JavaScript. | Disabled |
| Registration page key | To register, users need to go to, for example: tiki-register.php?key=yourregistrationkeyvalue Key required to be on included the URL to access the registration page (if not empty). |
None |
Interesting links
- 10 Tips to Keep Email Out of the Spam Folder
- CAN-SPAM Act: http://en.wikipedia.org/wiki/CAN-SPAM_Act_of_2003
- The full Can-Spam Act in HTML: http://www.legalarchiver.org/cs.htm
- Avoid Trigger Words & Phrases: http://blog.mannixmarketing.com/spam-trigger-words/
- Include a Text Version of Your Email if You Are Sending HTML Emails
- Use Permission Marketing Techniques
- Use Spam Checkers Before Sending Your Emails
- Get Off Blacklists
- Maintain a Good Text to Image Ratio
- Avoid Spam Traps using using a Opt-In automated system
- Avoid Large Attachments and Certain Attachment Types
- Make Sure Your DKIM, SPF, Sender-ID and Domain Keys Are Setup Properly
antibot | anti-bot | captcha | Anti-bot Captcha | No follow | ReCaptcha | Spam prevention | SpamPrevention