WordPress Tutorial

How to Setup WordPress Anti-Spam Protection

Introduction

By default WordPress allows readers to place comments under posts. Comments are a great way to interact with your readers and get feedback from them. Unfortunately, WordPress comments are constantly targeted by spammers. They use automated software to comment and place a link back to their page. Even unpopular WordPress blogs can receive thousands of spam comments. These comments can hurt your WordPress blog as they increase bandwidth and resource usage and can even negatively affect your search engine ranking position. This tutorial will show you how to setup WordPress anti-spam protection and stop spammers.

What you’ll need

Before you begin this guide you’ll need the following:

Access to WordPress Admin Area

Step 1 – Setting Up Akismet Plugin

The most popular plugin used to stop spam comments is Akismet. This plugin sends all comments to Akismet servers where they are checked using complex algorithms. If comments are considered as spam, Akismet will filter them out.
Akismet is so effective that it’s pre-installed on WordPress. Follow these steps in order to configure Akismet plugin:

  1. Login to WordPress administrator area.
  2. Navigate to Installed Plugins section and press Activate button under Akismet plugin.

    WordPress Akismet Activation

  3. You will see a big green success message. Press Activate your Akismet account button.

    WordPress Akismet Success Message

  4. API key is required for Akismet to work. Press Get your API key button in order to proceed. Alternatively, if you already have an API key, enter it into the field below and press Use this Key button.

    WordPress Akismet Get API Key

  5. You’ll be redirected to official Akismet page. Hit Get An Akismet API Key button.

    Akismet Get API Key Button

  6. In order to proceed, you’ll have to sign up for Akismet account. Enter your details and hit Sign Up button.

    Akismet Sing Up Form

  7. Unless you need advanced spam protection, choose Basic plan and press Get Started button.

    Akismet Basic Plan

  8. Use the slider at the left side and set price to $0/year, enter your contact info and press Continue button.

    Akismet Contact Info

  9. You will be redirected to Akismet Account page. API key can be found on the top of the page. Press eye icon and copy your API key.

    Akismet API Key

  10. Head back to your WordPress admin area, open Akismet settings page and paste your API key. Press Use this key button.

    Akismet Settings Page API Key

  11. You will see a green message at the top of the page.

    Akismet Success Message

Congratulations, you have just successfully installed Akismet plugin. Now all spam comments will be automatically placed in Spam Folder and deleted after 15 days.

Step 2 – Using Google ReCaptcha To Stop WordPress Comments Spam

Another effective way to fight WordPress comments spam is to use ReCaptcha challenge. It auto generates an image from characters and your visitors will have to prove they are humans by typing those characters into a field. ReCaptcha is a great way to stop spam if spammers are using automated software to submit comments. Unfortunately, it is not that effective against manually submitted spam and can make commenting more complicated for real users. While there are plenty of plugins created to implement ReCaptcha into WordPress, we recommend using WordPress ReCaptcha Integration by Jörn Lund simply because it’s user-friendly and easy to use. Follow these steps in order to install and configure said plugin:

  1. Access WordPress administrator area and navigate to Plugins section.
  2. Install WordPress ReCaptcha Integration plugin. You can find step by step guide how to install WordPress plugins here.

    WordPress ReCaptcha Integration Installation

  3. Once the installation is complete, navigate to plugin’s Settings page.

    Wordpress ReCaptcha Integration Settings

  4. In order to setup ReCaptcha, you will need to obtain Site key and Secret key from Google. Press on Google reCAPTCHA admin page and you will be redirected to Google ReCaptcha admin page. Note that Google Account is required to enter this page. A new account can be created here.

    WordPress ReCaptcha API Key

  5. First of all, you need to register your blog. Enter your domain name in Label and Domains fields and hit Register button.

    WordPress ReCaptcha API Key Register

  6. New Site and Secret keys for your blog will be generated.

    WordPress ReCaptcha API Keys

  7. Copy both keys and head back to ReCaptcha plugin’s settings page.
  8. Paste keys in appropriate fields and press Save Changes button.

    Wordpress ReCaptcha Save Changes

  9. Now you should see more settings. Enable ReCaptcha for comments by pressing Comment Form button.

    WordPress ReCaptcha Enable Comments

  10. At the bottom of the page press Save Settings button.

    WordPress ReCaptcha Save Changes

    That’s it! You successfully installed and enabled Google ReCaptcha. Now users will have to complete ReCaptcha challenge before submitting comments.

    WordPress ReCaptcha In Action

Conclusion

Spam comments can harm your WordPress blog and even hosting account. They increase bandwidth and other resources usage, can negatively affect your search engine ranking position. By finishing this tutorial you learned how to protect your WordPress blog from spam comments.

Add Comment

Click here to post a comment

This site uses Akismet to reduce spam. Learn how your comment data is processed.

More in WordPress Tutorial
How to Change WordPress Language

Close