The MU forums have moved to WordPress.org

Restricting registration (20 posts)

  1. kishorebudha
    Member
    Posted 16 years ago #

    Is there a way to keep out unwanted bloggers -- my blog site has been under attack from this IP address: 58.69.88.103 who is creating blogs and posting pornographic content (it is embarrasing). It is a pain. Currently I have renamed the wp-signup.php page. But is there another way by which I could continue to let people register but have all new registrations approved (by me) before they become available to the public.

  2. Generalvivi
    Member
    Posted 16 years ago #

    Yea i would like to know of this also. I would like an email sent to me that i have to approve before the person is allowed to create a blog/register on my site.

    maybe its a plugin or somthing ? any help would be great!

    -Vivi

  3. drmike
    Member
    Posted 16 years ago #

    You may also want to do a google search on blocking ip addresses using the htaccess file. Maybe the idiot will take the hint.

  4. Generalvivi
    Member
    Posted 16 years ago #

    any idea on the "approval" stuff?

  5. Generalvivi
    Member
    Posted 16 years ago #

    *small bump*

  6. Farms2
    Member
    Posted 16 years ago #

    You could always code the 'activate' email to come to you, with the info they've supplied, then you can activate it for them.... if you like them ;)

    Shouldn't be too hard.

  7. Generalvivi
    Member
    Posted 16 years ago #

    Nice idea ^_^! but! i have no idea where to start to code something like this. Are there any tutorials or things that might help me?

    <-- newb at coding

  8. djsteve
    Member
    Posted 16 years ago #

    Found this thread through the search, and I too am wondering if there has been anyone that has come up with a solution / plug in or anything that would allow us to more with the sign up process.

    I would like to see an approval that would allow someone to log in and add content to their blogs, but NOT show up on the front page "recenlt added" blogs, basically be there, but be hidden for the most part until we approve it.

    This way someone could get some thoughts written and develop thier blog right away, but we can keep splogs from the front page and therefore get no pagerank and therefor be basically useless.

    Perhaps an approval button in admin that would allow a blog to be "searchable and found by search engines" - and an option to have this foced off until we approve blog by blog basis or something..

  9. lunabyte
    Member
    Posted 16 years ago #

    Again, here's how I fixed it on my site. In general, so you know, as this isn't a step by step session.

    First, add in the hack so that new blog registrations trigger an email to the site admin.

    Things to look for and modify:

    1) Site-wide feed: in the query that actually pulls the posts from the blog, add in another AND then (is it post_id or id?) whichever it is, make sure it's >=5.

    2) Latest blogs, etc: find the queries that pull those things (somewhere in wpmu-functions.php) and do the same thing, to an extent. If it's checking posts or whatever, use a post id >=5. If it's for the actual most recent sign-up's/users, then add 24hours to the date it's checking for.

    3) Pings... look up in wp-includes (can't remember all the exact files off the top of my head) find from post.php the actual part where it adds an action to ping a service when the post is set to publish. Add an if statement around it, where it only runs the ping if the post_id is >= 5.

    Now, what these do.

    Keeps new blogs out of lists for 24 hours.
    Keeps posts with an id < 5 out of things like the site-wide feed, recent post lists, and especially important... from pinging pingomatic and having that post indexed. In other words, if some jackass gets by your sign-up precautions, then posts whatever, at least they won't be telling the world all about it and you will have time to remove their crap.

  10. andrea_r
    Moderator
    Posted 16 years ago #

    As for blocking IPs, you can do that on the server level.

  11. lunabyte
    Member
    Posted 16 years ago #

    Or firewall level... ;)

  12. ReikiMusic
    Member
    Posted 16 years ago #

    Authorising registrations would be very handy.

    I really thought wordpress standard had an invite only registrations tick box somewhere - must be going mad?

  13. mrjcleaver
    Member
    Posted 16 years ago #

    I am in the process of making signing up for blogs possible only after the user has an ID. The new user has to fill in a reasonable amount of profile information, using the http://codex.wordpress.org/WPMU_Cimy_Extra_Fields_Plugin. This then gets listed in their profile.

    If the user has suitably coherent thoughts then I act on the blog sign up token. If not, well, they can read and comment but they can't splog.

  14. dsader
    Member
    Posted 16 years ago #

    Are there more options than the following from wpmu-functions.php?

    <?php
    function close_new_blog_signups($blah) {
    
    // $blah = 'none';  // visitors and logged users get 'Registration Disabled' message.
     // $blah = 'blog';  // visitors get 'You're logged in already. No need to register again!' logged users get blog signup form BUGGY!
     $blah = 'user'; // logged users get 'You're logged in already. No need to register again!' visitors get signup form without blog option
    // $blah = 'all'; // default
    
    return $blah;
    	}
    
    add_filter('wpmu_active_signup', 'close_new_blog_signups');
    ?>

    The side effect, or defect, limits legit users to one blog. But no more splog.

  15. lunabyte
    Member
    Posted 16 years ago #

    The above post is NOT for MU, and in the wrong forums.

  16. Mattz
    Member
    Posted 16 years ago #

    @lunabyte, but it is one what we should migrate to MU.

    I will try to in some days/weeks.

  17. lunabyte
    Member
    Posted 16 years ago #

    I don't know why.

    Moderated signups were something Andrea blogged about in October.

    http://wpmututorials.com/hacks/how-to-moderate-signups/

  18. Mattz
    Member
    Posted 16 years ago #

    Yep true, I have seen that post too, but filled this into a nice plugin might be a good addon to her work too ?

  19. donncha
    Key Master
    Posted 16 years ago #

    Deleted blatant advert for the off-topic plugin!

  20. lostdeviant
    Member
    Posted 15 years ago #

    is there a hack or plugin that will limit new blogs if another was registered from the same IP within a certain amount of time?

About this Topic

  • Started 16 years ago by kishorebudha
  • Latest reply from lostdeviant