Open DavidMorin opened 2 years ago
Hi @DavidMorin
Do you get spam subscriptions or spam requests for subscription management link?
Disabling the "Allow Subscribe Without Comment" will get rid of the form that allows subscribing without leaving a comment. But the "Request management link" form is still active.
I see both the challenge question and the captcha at the moment at https://socialpronow.com/comment-subscriptions/
Hello!
You wrote: Do you get spam subscriptions or spam requests for subscription management link?
I assume them to be spam subscriptions? Here's a screenshot for your reference (So far today we've received 190 of them)
Hi,
Those subscribers did not leave comments as well? Just a subscription without a comment?
Hello, this is correct. Just a subscription!
On Mon, Oct 18, 2021 at 4:30 AM Slobodan Kustrimovic < @.***> wrote:
Hi,
Those subscribers did not leave comments as well? Just a subscription without a comment?
— You are receiving this because you were mentioned. Reply to this email directly, view it on GitHub https://github.com/stcr/subscribe-to-comments-reloaded/issues/667#issuecomment-945525875, or unsubscribe https://github.com/notifications/unsubscribe-auth/ACL4ZT4IUIU4PBUBXLKBR23UHPLLPANCNFSM5F5O37IA . Triage notifications on the go with GitHub Mobile for iOS https://apps.apple.com/app/apple-store/id1477376905?ct=notification-email&mt=8&pt=524675 or Android https://play.google.com/store/apps/details?id=com.github.android&referrer=utm_campaign%3Dnotification-email%26utm_medium%3Demail%26utm_source%3Dgithub.
The only thing that comes to mind is that both the post and the page for that post's subscription (without comment) were still cached and active.
This is what the "subscribe without comment" URL shows:
But if you are still getting spam subscriptions now then it's not the cache. Are you still getting them?
Let me know, we can release an update tomorrow that introduces a few changes that should help.
Hello, yes we still get several hundred subscriptions per day: [image: image.png]
There are no comments on the article the subscriptions come from: https://socialpronow.com/blog/interview-cb-daniels/
Another issue this seems to have caused is that no emails are sent, I guess we've hit a send quota? But let's look at that when we've solved the spam submissions.
Best, David
On Tue, Oct 19, 2021 at 12:06 PM Slobodan Kustrimovic < @.***> wrote:
The only thing that comes to mind is that both the post and the page for that post's subscription (without comment) were still cached and active.
This is what the "subscribe without comment" URL shows:
[image: image] https://user-images.githubusercontent.com/4485586/137949126-c5349768-0d85-4c95-8418-a235beb97521.png
But if you are still getting spam subscriptions now then it's not the cache. Are you still getting them?
Let me know, we can release an update tomorrow that introduces a few changes that should help.
— You are receiving this because you were mentioned. Reply to this email directly, view it on GitHub https://github.com/stcr/subscribe-to-comments-reloaded/issues/667#issuecomment-946874741, or unsubscribe https://github.com/notifications/unsubscribe-auth/ACL4ZT26PN5RKNLHZ4D27R3UHWJQFANCNFSM5F5O37IA . Triage notifications on the go with GitHub Mobile for iOS https://apps.apple.com/app/apple-store/id1477376905?ct=notification-email&mt=8&pt=524675 or Android https://play.google.com/store/apps/details?id=com.github.android&referrer=utm_campaign%3Dnotification-email%26utm_medium%3Demail%26utm_source%3Dgithub.
Do you have some experience changing code in the files?
If you do, can you try applying this change: https://github.com/stcr/subscribe-to-comments-reloaded/commit/c7f8032579e305d1f708c4cd2ae770e92cf6589e
Hello, I updated the file with your code, and cleared cache:
[image: image.png]
However, spam still arrives:
[image: image.png]
I also got a mail logger but weirdly enough it doesn't show anything in sent emails: [image: image.png]
On Wed, Oct 20, 2021 at 1:25 PM Slobodan Kustrimovic < @.***> wrote:
Do you have some experience changing code in the files?
If you do, can you try applying this change: c7f8032 https://github.com/stcr/subscribe-to-comments-reloaded/commit/c7f8032579e305d1f708c4cd2ae770e92cf6589e
— You are receiving this because you were mentioned. Reply to this email directly, view it on GitHub https://github.com/stcr/subscribe-to-comments-reloaded/issues/667#issuecomment-947881819, or unsubscribe https://github.com/notifications/unsubscribe-auth/ACL4ZTZ2UR2AYEMWBQVVNITUH33RVANCNFSM5F5O37IA . Triage notifications on the go with GitHub Mobile for iOS https://apps.apple.com/app/apple-store/id1477376905?ct=notification-email&mt=8&pt=524675 or Android https://play.google.com/store/apps/details?id=com.github.android&referrer=utm_campaign%3Dnotification-email%26utm_medium%3Demail%26utm_source%3Dgithub.
On line 9 is the global $wp_subscribe_reload
, delete everything from that line to the end (including that line).
Then check to see if spam submissions are still coming, if they are then it's not coming through the system that handles "subscribe without commenting".
In that case, can you try setting the Checked by default
to No
in WP admin > StCR > Comment Form
and then check if new spam submissions are still coming. Clear the cache after the change.
By the way, I'm not seeing the images you attach to the replies. Shows like this:
Hello,
I've commented out all that code and cleared the cache: https://snipboard.io/h2pyci.jpg
Unfortunately, the submissions continue: https://snipboard.io/9mBcGs.jpg https://snipboard.io/9mBcGs.jpg
On Wed, Oct 20, 2021 at 2:11 PM Slobodan Kustrimovic < @.***> wrote:
On line 9 is the global $wp_subscribe_reload, delete everything from that line to the end (including that line).
Then check to see if spam submissions are still coming, if they are then it's not coming through the system that handles "subscribe without commenting".
In that case, can you try setting the Checked by default to No in WP admin > StCR > Comment Form and then check if new spam submissions are still coming.
By the way, I'm not seeing the images you attach to the replies. Shows like this:
[image: image] https://user-images.githubusercontent.com/4485586/138147793-bed10a04-a28a-4f05-8e5c-00363634f714.png
— You are receiving this because you were mentioned. Reply to this email directly, view it on GitHub https://github.com/stcr/subscribe-to-comments-reloaded/issues/667#issuecomment-947916133, or unsubscribe https://github.com/notifications/unsubscribe-auth/ACL4ZT4H4XARMMW23EPE2ETUH4A63ANCNFSM5F5O37IA . Triage notifications on the go with GitHub Mobile for iOS https://apps.apple.com/app/apple-store/id1477376905?ct=notification-email&mt=8&pt=524675 or Android https://play.google.com/store/apps/details?id=com.github.android&referrer=utm_campaign%3Dnotification-email%26utm_medium%3Demail%26utm_source%3Dgithub.
They are not coming through the "sub without comment" system.
Did you try the setting change I mentioned?
On Wed, Oct 20, 2021 at 21:46 DavidMorin @.***> wrote:
Hello,
I've commented out all that code and cleared the cache: https://snipboard.io/h2pyci.jpg
Unfortunately, the submissions continue: https://snipboard.io/9mBcGs.jpg https://snipboard.io/9mBcGs.jpg
On Wed, Oct 20, 2021 at 2:11 PM Slobodan Kustrimovic < @.***> wrote:
On line 9 is the global $wp_subscribe_reload, delete everything from that line to the end (including that line).
Then check to see if spam submissions are still coming, if they are then it's not coming through the system that handles "subscribe without commenting".
In that case, can you try setting the Checked by default to No in WP admin > StCR > Comment Form and then check if new spam submissions are still coming.
By the way, I'm not seeing the images you attach to the replies. Shows like this:
[image: image] < https://user-images.githubusercontent.com/4485586/138147793-bed10a04-a28a-4f05-8e5c-00363634f714.png
— You are receiving this because you were mentioned. Reply to this email directly, view it on GitHub < https://github.com/stcr/subscribe-to-comments-reloaded/issues/667#issuecomment-947916133 , or unsubscribe < https://github.com/notifications/unsubscribe-auth/ACL4ZT4H4XARMMW23EPE2ETUH4A63ANCNFSM5F5O37IA
. Triage notifications on the go with GitHub Mobile for iOS < https://apps.apple.com/app/apple-store/id1477376905?ct=notification-email&mt=8&pt=524675
— You are receiving this because you commented. Reply to this email directly, view it on GitHub https://github.com/stcr/subscribe-to-comments-reloaded/issues/667#issuecomment-947983417, or unsubscribe https://github.com/notifications/unsubscribe-auth/ABCHDUVKLEOBUCXEEZHENLTUH4MA5ANCNFSM5F5O37IA . Triage notifications on the go with GitHub Mobile for iOS https://apps.apple.com/app/apple-store/id1477376905?ct=notification-email&mt=8&pt=524675 or Android https://play.google.com/store/apps/details?id=com.github.android&referrer=utm_campaign%3Dnotification-email%26utm_medium%3Demail%26utm_source%3Dgithub.
My bad, I misread your last email.
I've now disabled Checked by Default and that resolved it.
Is there any way we can keep it checked but add a hidden captcha (v3) below the comment field? (I initially thought that's what would happen as I have these settings activated: https://snipboard.io/dZ3LFg.jpg)
On Wed, Oct 20, 2021 at 3:55 PM Slobodan Kustrimovic < @.***> wrote:
They are not coming through the "sub without comment" system.
Did you try the setting change I mentioned?
On Wed, Oct 20, 2021 at 21:46 DavidMorin @.***> wrote:
Hello,
I've commented out all that code and cleared the cache: https://snipboard.io/h2pyci.jpg
Unfortunately, the submissions continue: https://snipboard.io/9mBcGs.jpg https://snipboard.io/9mBcGs.jpg
On Wed, Oct 20, 2021 at 2:11 PM Slobodan Kustrimovic < @.***> wrote:
On line 9 is the global $wp_subscribe_reload, delete everything from that line to the end (including that line).
Then check to see if spam submissions are still coming, if they are then it's not coming through the system that handles "subscribe without commenting".
In that case, can you try setting the Checked by default to No in WP admin > StCR > Comment Form and then check if new spam submissions are still coming.
By the way, I'm not seeing the images you attach to the replies. Shows like this:
[image: image] <
https://user-images.githubusercontent.com/4485586/138147793-bed10a04-a28a-4f05-8e5c-00363634f714.png
— You are receiving this because you were mentioned. Reply to this email directly, view it on GitHub <
https://github.com/stcr/subscribe-to-comments-reloaded/issues/667#issuecomment-947916133
, or unsubscribe <
https://github.com/notifications/unsubscribe-auth/ACL4ZT4H4XARMMW23EPE2ETUH4A63ANCNFSM5F5O37IA
. Triage notifications on the go with GitHub Mobile for iOS <
https://apps.apple.com/app/apple-store/id1477376905?ct=notification-email&mt=8&pt=524675
or Android <
.
— You are receiving this because you commented. Reply to this email directly, view it on GitHub < https://github.com/stcr/subscribe-to-comments-reloaded/issues/667#issuecomment-947983417 , or unsubscribe < https://github.com/notifications/unsubscribe-auth/ABCHDUVKLEOBUCXEEZHENLTUH4MA5ANCNFSM5F5O37IA
. Triage notifications on the go with GitHub Mobile for iOS < https://apps.apple.com/app/apple-store/id1477376905?ct=notification-email&mt=8&pt=524675
— You are receiving this because you were mentioned. Reply to this email directly, view it on GitHub https://github.com/stcr/subscribe-to-comments-reloaded/issues/667#issuecomment-947988916, or unsubscribe https://github.com/notifications/unsubscribe-auth/ACL4ZT7JWMOOBZ5Q2MJCVPLUH4NB3ANCNFSM5F5O37IA . Triage notifications on the go with GitHub Mobile for iOS https://apps.apple.com/app/apple-store/id1477376905?ct=notification-email&mt=8&pt=524675 or Android https://play.google.com/store/apps/details?id=com.github.android&referrer=utm_campaign%3Dnotification-email%26utm_medium%3Demail%26utm_source%3Dgithub.
Give this a try https://wordpress.org/plugins/simple-google-recaptcha/
On Wed, Oct 20, 2021 at 22:10 DavidMorin @.***> wrote:
My bad, I misread your last email.
I've now disabled Checked by Default and that resolved it.
Is there any way we can keep it checked but add a hidden captcha (v3) below the comment field? (I initially thought that's what would happen as I have these settings activated: https://snipboard.io/dZ3LFg.jpg)
On Wed, Oct 20, 2021 at 3:55 PM Slobodan Kustrimovic < @.***> wrote:
They are not coming through the "sub without comment" system.
Did you try the setting change I mentioned?
On Wed, Oct 20, 2021 at 21:46 DavidMorin @.***> wrote:
Hello,
I've commented out all that code and cleared the cache: https://snipboard.io/h2pyci.jpg
Unfortunately, the submissions continue: https://snipboard.io/9mBcGs.jpg https://snipboard.io/9mBcGs.jpg
On Wed, Oct 20, 2021 at 2:11 PM Slobodan Kustrimovic < @.***> wrote:
On line 9 is the global $wp_subscribe_reload, delete everything from that line to the end (including that line).
Then check to see if spam submissions are still coming, if they are then it's not coming through the system that handles "subscribe without commenting".
In that case, can you try setting the Checked by default to No in WP admin > StCR > Comment Form and then check if new spam submissions are still coming.
By the way, I'm not seeing the images you attach to the replies. Shows like this:
[image: image] <
https://user-images.githubusercontent.com/4485586/138147793-bed10a04-a28a-4f05-8e5c-00363634f714.png
— You are receiving this because you were mentioned. Reply to this email directly, view it on GitHub <
https://github.com/stcr/subscribe-to-comments-reloaded/issues/667#issuecomment-947916133
, or unsubscribe <
https://github.com/notifications/unsubscribe-auth/ACL4ZT4H4XARMMW23EPE2ETUH4A63ANCNFSM5F5O37IA
. Triage notifications on the go with GitHub Mobile for iOS <
https://apps.apple.com/app/apple-store/id1477376905?ct=notification-email&mt=8&pt=524675
or Android <
.
— You are receiving this because you commented. Reply to this email directly, view it on GitHub <
https://github.com/stcr/subscribe-to-comments-reloaded/issues/667#issuecomment-947983417
, or unsubscribe <
https://github.com/notifications/unsubscribe-auth/ABCHDUVKLEOBUCXEEZHENLTUH4MA5ANCNFSM5F5O37IA
. Triage notifications on the go with GitHub Mobile for iOS <
https://apps.apple.com/app/apple-store/id1477376905?ct=notification-email&mt=8&pt=524675
or Android <
.
— You are receiving this because you were mentioned. Reply to this email directly, view it on GitHub < https://github.com/stcr/subscribe-to-comments-reloaded/issues/667#issuecomment-947988916 , or unsubscribe < https://github.com/notifications/unsubscribe-auth/ACL4ZT7JWMOOBZ5Q2MJCVPLUH4NB3ANCNFSM5F5O37IA
. Triage notifications on the go with GitHub Mobile for iOS < https://apps.apple.com/app/apple-store/id1477376905?ct=notification-email&mt=8&pt=524675
— You are receiving this because you commented. Reply to this email directly, view it on GitHub https://github.com/stcr/subscribe-to-comments-reloaded/issues/667#issuecomment-947999311, or unsubscribe https://github.com/notifications/unsubscribe-auth/ABCHDUVIRTC6A5EUFYZCNP3UH4O3DANCNFSM5F5O37IA . Triage notifications on the go with GitHub Mobile for iOS https://apps.apple.com/app/apple-store/id1477376905?ct=notification-email&mt=8&pt=524675 or Android https://play.google.com/store/apps/details?id=com.github.android&referrer=utm_campaign%3Dnotification-email%26utm_medium%3Demail%26utm_source%3Dgithub.
We receive spam submissions, so I've disabled 'Allow "Subscribe Without Comment"'. However, we still receive spam, so it feels like this change does not propagate.
We've also activated Captcha and the challenge question, and these changes also do not show up on the site. I've tried disabling and re-enabling the plugin.
I've cleared all our caches, but changes do not propagate. We use Ezoic script optimization but I've disabled it from the example page below and it doesn't help.
Example page: https://socialpronow.com/blog/interview-macleod-succeedsocially/
Best, David