Using MUWP 1.3.2 and have registrations disabled. How is then, spam blogs still get registered? What are others doing to defend against this?
Using MUWP 1.3.2 and have registrations disabled. How is then, spam blogs still get registered? What are others doing to defend against this?
What are others doing to defend against this?
A quick search for splogs will show you a number of recent threads on the topic.
Well, the main concern is how are sploggers registering when registrations are disabled? Forget the what are others doing question.
Its possible its an already registered user that's creating the splogs if its only user registration that is disabled.
Existing users can not create blogs if registerations is set to disabled or users only, but they can if its set to blogs only or all.
I remember hearing about a hack that would allow someone to post the registeration info to wp-register.php and it would work even if registerations were disabled but I thought that that was addressed already.
If you don't plan on activating signups soon, you can move wp-signup.php to a non web accessable direcetory so you know that can't happen, even renaming it actually should be enough if people don't know where to find it.