What is reCAPTCHA?
reCAPTCHA is an anti-spam method originating from Carnegie Mellon University which uses CAPTCHAs in a genius way. Instead of randomly generating useless characters which users grow tired of continuosly typing in, risking the possibility that spammers will eventually write sophisticated spam bots which use OCR libraries to read the characters, reCAPTCHA uses a different approach. They effectively kill two birds with one stone.
Digitizing of Books
If you didn’t know, the world is in the process of digitizing books (Even the Library of Congress is too) so that they can last forever as well as become searchable. To digitize the books, Scanners scan the pages of the books resulting in image files. OCR technology is then used to attempt to convert the images to text. Sometimes, however, certain words are illegible to the OCR technology but the good thing is that they know when the technology knows when this happens and can mark the words and put them into a repository. To construct a CAPTCHA, reCAPTCHA takes one of the words from these repositories and couples it with a word they do know, then distorts them some more. When a certain percentage of people type in the same spelling for the unknown word, it is assumed to be correct and sent back to help with the digitization process.
A typical reCAPTCHA form
How is this any better?
This effectively means that users who fill in reCAPTCHA forms can feel good knowing they are contributing to the digitizing of books all over the world, so it gives it a purpose. Also, if Industry Standard OCR Scanners can’t read certain words, add to that the fact that they are further distorted before being added to a CAPTCHA, one can be almost certain that Spam Bots won’t be able to read the CAPTCHAs either, this makes it secure.
reCAPTCHA has many security measures including IP Address Detection to review and potentially block IPs which have solved too many CAPTCHAs in a limited amount of time and adaptive security meaning they can fix bugs if they’re found, as they are found because the CAPTCHAs are generated on their servers (Meaning less load for you as well). But what if someone hosts a reCAPTCHA on their website, collects answers from their visitors and submits the answers to your site? Well that’s why reCAPTCHA uses a key system to authenticate. The keys are domain specific meaning you will need new ones for each domain you want to use reCAPTCHA on (Though this doesn’t apply to sub-domains). There is a public key and private key which are client-side and server-side respectively.
Many popular websites such as Twitter, Facebook, and even certain Government Websites like the TV Converter Box Coupon site are using reCAPTCHA. It is definitely becoming more and more widespread, and the neat thing is that it is accessible to everyone.
Is it working?
Take a look at this page which shows just how accurate and efficient reCAPTCHA is at transcribing literature to electronic form.
MailHide EMail Protection
Another project from reCAPTCHA is email protection. They call it MailHide. MailHide takes email addresses and encrypts them so that it becomes impossible for spam bots to take and add to their spam lists. MailHide generates a link which users click on to reveal the address. Once this link is clicked, they solve a simple reCAPTCHA form and the email is revealed. Email addresses that are hidden by MailHide show up by default like so: myem…@emailserver.com. Users then click on the three dots in the middle, solve the reCAPTCHA form that appears, and the email is revealed. This is just one way of putting reCAPTCHA forms to good use. Google is already using a similar method in their Google Groups site.
WordPress Plugin Features
Some of the many features that the WordPress reCAPTCHA Plugin includes are:
- Choice of reCAPTCHA anti-spam in:
- Comments
- Registration Form
- Language support:
- English
- Dutch
- French
- German
- Portuguese
- Russian
- Spanish
- Turkish
- Themes:
- Red
- White
- Black Glass
- Clean
- XHTML 1.0 Strict Compliance
- Tab Index customization on the comments post form
- HTTPS / SSL Support
- MailHide integration for email address protection. For example: bla...@gmail.com
- mcrypt module detection
- nohide BBCode tags to bypass email address protection
- Option to have admins exempt from reCAPTCHA forms and/or MailHide email protection
- Separate stylesheet for styling purposes (i.e. styling of protected emails)
- Can now work while Akismet is enabled (Though there shouldn’t be a reason to have it enabled while this is)
As if all this weren’t enough, WP-reCAPTCHA is also WordPress MU compatible!
Installation
The installation of the plugin is really simple: Simply download the archive, extract it and upload the wp-recaptcha folder to your wp-content/plugins folder. Finally, activate the plugin in the Administration interface.
For instructions on installing with WordPress MU (In two possible configurations), please refer to the Installation Section on the plugin’s page at the WordPress Plugins Repository.
Requirements
The only requirements for this plugin are that you get the API keys for reCAPTCHA here and if you plan on using MailHide email protection, get the API keys for that here.
If you plan on using MailHide, you will need to have the mcrypt PHP module loaded (Most servers do).
If you want XHTML 1.0 Compliance you and your users will need to have Javascript enabled. If you would like to have XHTML 1.0 Compliance while having support for non-Javascript users, read this.
FAQ
Why am I getting “Warning: pack() [function.pack]: Type H: illegal hex digit”?
You have the keys in the wrong place. Remember, the reCAPTCHA keys are different from the MailHide keys. And the Public keys are different from the Private keys as well. You can’t mix them around. Go through your keys and make sure you have them each in the correct box.
Help! I Still See Spam in my Spam Queue!
Please refer to the FAQ at WordPress.Org.
If you have any problems, you can comment here, make a post on the WordPress Forums with the tag wp-recaptcha, or use the Google Code Issue Tracker.
You can download the latest version of WP-reCAPTCHA from the WordPress Plugin Page.
thanks for the wonderful plugin
i’m testing it now on a couple of my sites – Single WP installation -
but i really wish if you guys can make this plugin to work with registration form on WordPress MU -multi user-
it will be a wonderful add to your plugin
thanks
Yeah, that’s been requested. I’d first have to see what that involves however, I don’t really know what the differences are or anything. I’ll keep that in mind for version 2.9. Thanks for input fouad fakhr.
Hello,
Im having some trouble with a wp-recaptcha in a wordpress-mu site,
i modify the code to force the users, and the main blog can use correctly the captcha, but the users still see the message: To use reCAPTCHA you must get an API key from http://recaptcha.net/api/getkey
Do you have any idea where the problem can be?
can see in http://www.acuablogs.com and user in : http://test01.acuablogs.com/2008/06/06/hola-mundo/#comments
Thank you very much for your jobs and efforts.
I see what you mean, I believe it has to do with the fact that options are blog-specific so even though the keys are already in the options, they can’t get accessed by the child blogs…hmmm…I’ll have to figure this one out. Thanks for letting me know, I’ll keep you updated.
@stephenchow: I’ve fixed that problem. You should get the latest version 2.8.4 and follow the new installation instructions. Everything should work now, let me know if you have any other questions, problems, suggestions, whatever.
thanks Blaenk for your help and time to make your awesome wp-recaptcha plugin a wpmu compatible
you saved alot of our time and effort fighting sblogs
thanks again
So I’m assuming it works now? Can you please reply in wmudev.org and in mu.wordpress.org forums so that people know that it works now? Thanks!
Hmmm… I just saw your blog at http://egmedicine.com/wp-signup.php and the recaptcha still shows up above the form, and it shouldn’t. As you can see on mine ( http://test.blaenkdenum.com/wp-signup.php , if the site is down, try again later ), it shows up where it should go. Are you sure you’ve deleted everything and started over? I suggest you delete any wp-recaptcha things you have on your server (any folders, files, whatever) and then re-download and re-install 2.8.4, that should fix any problems.
Sweet, it looks like it’s working perfectly now. Thanks for helping me perfect the plugin!
Dear BlaenkDenum. I’ve installed reCaptcha plugin at http://www.waroeng.org. The comment was ok, but the reCptcha was not showup for registration. What’s wrong with that.
[quote comment="18233"]Dear BlaenkDenum. I’ve installed reCaptcha plugin at http://www.waroeng.org. The comment was ok, but the reCptcha was not showup for registration. What’s wrong with that.[/quote]
Where did you install, /plugins or /mu-plugins? Did you enable the CAPTCHA on the registration page in the settings? Have you flushed the Super Cache and seen if the changes take effect?
Dear Denum, i’ve install it at /plugins and /mu-plugins, but both of it cannot display RC at registration page. and i’ve delete the super cache too. the resukt is the same. i’ve enable the captcha on the registration page too.
You can’t install it in both places, you have to choose either one (As far as I know). Are you using a custom theme for WordPress MU? What version of WP-reCAPTCHA are you using? Also, you mentioned having it installed in both mu-plugins as well as plugins/, for it to appear on the registration form, it has to be in mu-plugins and you have to change the settings at Site Admin > reCAPTCHA. Would you mind taking a screenshot of the settings page for me to look at as well? I hope to help solve your problem.
@Blaenk Denum: Thank you very much, now it s working under users blogs perfectly.
@stephenchow: You’re welcome.
Hi,
It’s a cool plugin. I was wondering if I could apply this to a contact form. What needs to be done in order to achieve this?
Eddy
[quote comment="18247"]Hi,
It’s a cool plugin. I was wondering if I could apply this to a contact form. What needs to be done in order to achieve this?
Eddy[/quote]
You can do that easily. Given that your contact form is handled with a server side language, you can use one of many reCAPTCHA Libraries to add reCAPTCHA Anti-Spam support to the form. If you need any help, I suggest you ask in the reCAPTCHA Mailing List.
[quote comment="18252"]
You can do that easily. Given that your contact form is handled with a server side language[/quote]
I was looking for a solution in WP and I never wrote a plugin
Well it’s besides the fact that it’s WP, since WP is just PHP anyways, and considering that no plugin that I can think of can adapt reCAPTCHA to any custom form that you have, then you will have to do it the way described above, manually.
the admin screen isn’t centered, ad the two tables are moved on the left. i’m using wp 2.5.1. the rest is ok, even if I can’t get mailhide to work with my hosting…
I\’ve tried this on two different WP 2.5.1 (up to date with SVN) blogs and encountered the same fatal error when trying to activate:
Parse error: syntax error, unexpected $end in /users/home/chrisl/web/public/wp-content/plugins/wp-recaptcha/wp-recaptcha.php on line 793
I tried the 2.8.4 version just to test and got the same error on a different line. Any advice?
Also, what plugin(s) are you using for your comment replies/quotes/threads? I like it…
[quote comment="18451"]I\’ve tried this on two different WP 2.5.1 (up to date with SVN) blogs and encountered the same fatal error when trying to activate:
Parse error: syntax error, unexpected $end in /users/home/chrisl/web/public/wp-content/plugins/wp-recaptcha/wp-recaptcha.php on line 793
I tried the 2.8.4 version just to test and got the same error on a different line. Any advice?[/quote]
I’ve heard about that problem before, I will investigate, sorry for the inconvenience. I know that you downloaded it from wordpress.org/extend/plugins right? But can you please somehow supply me with the entire wp-recaptcha.php file? You can either paste the entire contents into my pastebin or upload it to somewhere that’s accessible by me. Thank you!
[quote comment="18451"]
Also, what plugin(s) are you using for your comment replies/quotes/threads? I like it…[/quote]
Thanks! Glad you did. I don’t have any threaded comments, my reply is self-made (Took me a while to get it right) and the quoting is done thanks to the wonderful Quoter plugin.
[quote comment="18396"]the admin screen isn’t centered, ad the two tables are moved on the left. i’m using wp 2.5.1. the rest is ok, even if I can’t get mailhide to work with my hosting…[/quote]
So everything else is fine? The styling on registration form is fine too? If you have it enabled on the registration form that is. How about when you get the CAPTCHA wrong, does the notification display correctly? (It should be above the reCAPTCHA form when the page reloads). Where do you have the plugin installed, plugins/wp-recaptcha? Are you on WPMU?
Not sure if that last post went through– I put the code for wp-recaptcha.php (downloaded from here in your pastebin
[for some reason I couldn't post my reply using the OpenID, even though it remembered me!]
Oh, it might be because I updated the wp-openid plugin to a newer revision, in hopes that it would fix the unnecessary escaping of apostrophes that OpenID posters have been having. I’m also going to have to add in a check to see when people put a URL as their name because it’s annoying.
Thanks, I’ll look into it. It seems like it’s a problem with scopes or something, as if it think that the end shouldn’t be there or something. It’s probably your PHP settings, I will investigate further and keep you updated.
@Blaenk Denum:
I’m pretty new to OpenID and am using the steps recommended by Sam Ruby to use my own domain as a delegate… what’s irritating is that I do have my name and such in my profile, but it is only picked up properly by some apps.
Also, I noticed that it reached my OpenID server and then bounced me back to your front page with the comment info (I can test and show you specifically what I got) rather than to this post…
Yeah I use a delegate too (Using WP-Yadis). You mean you do have your name in your OpenID profile but it’s not being picked up by this right? Do you manually type in your URL as your name? Have you tried not doing that and seeing what happens? By comment info are you referring to something like a reCAPTCHA error? Mind pasting this here? Thanks. I’m trying to help Will Norris with his WP-OpenID plugin.
Here’s the URL I get bounced to when I submit the form with my web site in the URL field.
Sorry for the trouble Chris, the developer of the OpenID is working with me to fix this problem (I’m using the latest revision from his repository). Would you mind checking one more time if OpenID works?
Looks like it worked (assuming this reply goes through as it should)
Yeah it worked. Thanks for helping me test it, I really appreciate it. I finally figured out the revision that worked for me before I updated the copy I had from subversion.
One question, did you only input your openid, or did you also type in your name. The reason I’m asking is because I’m confused as to whether or not the plugin pulls the name from your openid persona automatically.
As for your reCAPTCHA question, I will get to working on that, sorry that it’s until now but I’ve been pretty busy. Thanks for your patience and sorry for the inconvenience!
I\’m going to test without my name (if it will let me). On the previous attempts I put my name in the name box…
If the comment above is without the name, then it worked
Thanks again!
Hey Chris, I had a problem where the comments wouldn’t show up on this page but I’ve got it fixed. Anyways, I was just going to say that I’ve fixed the problem. I suggest you get the latest version (2.9.1). Thanks for your patience man! Sorry again for any inconvenience.
Thanks! I\’ll upgrade and try it out now…
When I activate the plugin, it shows up well below the “Submit” button as well as a couple of other extra options I have installed.
Is there any way to manually position where the reCaptcha box shows up?
I checked this and I see what you’re talking about. If you look at the script, it uses Javascript to place the recaptcha above the submit button, meaning you have to have the same id’s for the form fields as I do. Match the ones here with the ones on your site and make the ones on your site match the ones here, then it should work.
@Blaenk Denum: But they already match… Author | Email | URL | Comment | Submit
Hello. Thanks for creating this plugin. By any chance has anyone run into problems with the plugin when Wordpress isn’t installed in the site root? I’ve updated to the latest version but still get the “fatal error” issue in the admin.
@Janet: Where is your blog, and what exactly is the error, and how do you get it? Right after activating the plugin? After changing some settings around? Which ones? What page are you at when you see the error? Thanks!
Thanks! My whole site is powered by wordpress and the blog iself is at
http://www.janetmartin.ca/blog/
I get the error after attempting to activate the plugin in the plugins section of the admin panel (/wp-admin/plugins.php). The error I get is “Plugin could not be activated because it triggered a fatal error.
This page cannot be displayed…500 error”. The error message appears above my list of plugins. The plugin won’t activate so I haven’t changed any settings.
Not sure if this is relevant but I have wordpress installed in a folder right than in the root.
Hmmm…it shouldn’t matter, but I’ll make sure. Do you happen to has HTTPS/SSL in the administration section of your site?
Thanks for your help. I have an SSL but it’s currently off.
I think it indeed is a problem with the way that you have you blog set up. How did you make it so that it’s on a separate directory, did you simply set a setting someway in WordPress, or did you ‘hack’ it to be that way? Normally it’s through a setting in wordpress, but you said the entire site us using wordpress so it makes me wonder.
Can you open up wp-recaptcha.php for me please? On line 532, change the entire line so that it reads:
$uri = parse_url(get_option('home'));Then save it, and see what happens then, when you try to activate it.
Actually what matters seems to be line 48. Make it so that it reads as follows:
define('WP_CONTENT_URL', get_option('home') . '/wp-content');In other words, changing the get_option’s argument from siteurl to home. Then let me know how it goes.
If you’re not able to edit wp-recaptcha.php, let me know and I’ll upload one for you to download, it’s quicker if you do it yourself though, if you can that is.
Blaenk: Thanks for the link, and thanks for all your work maintaining this plugin.
MailHide works on posts, but not WP pages. Any way to get it working there?
@Mark Adams: Interesting. This page which you commented on is a page. Do you have a link I can take a look at? Also, have you set your settings the way you wanted them? After you have, clear/flush your cache and do a cold-reload of the page (SHIFT or CTRL + R). It could be that first you had it so that no one can see the emails, viewed a post, then made it so that admins can see the emails, so it looks like it’s messed up but it’s actually the cache. At least, from the information you gave me, that’s the only idea I can come up with haha.
The page is http://mountainbible.net/?p=70
This is site is run on WordPress 2.6.
how to setup for wp-signup.php page ?
on my website with wordpress 2.6 the recaptcha isn’t showing on the post pages…
can you help me?! thank you…
Can you please post a screenshot of your settings for reCAPTCHA?
Great plugin. One thing is it always sends its admin CSS via HTTP giving mixed content warnings via WP 2.6 with admin SSL.
@Blaenk Denum: I have the same problem as roby. here’s a screenshot: http://farm4.static.flickr.com/3179/2755280592_976c6378f7_o.png
@Richard: Update – sorry about that! The problem was that I thought I could use the same API key for multiple sites, but got it working now! Thanks for the plugin! Robbi =)
Is the plugin working for WPMU 2.6? It was working for WPMU 1.51. But after to upgrading to 2.6. The user cannot sign up.
After clicking the “Sign up” button at step2 of blog registration. It will redirect back to the first step.
However the plugin is working for the comments. Any idea how its not working?
Thanks
the plugin works for my comments, but isn’t displayed on registrations, even though it is enabled for the registration page.
Using WP 2.6 and wp-captcha 2.9.1. Thoughts?
any plans to extend your recaptcha plugin to bbpress, so that you can’t post comments without recaptcha completion?
Ah, i think my prob is that i’m using the Themed Login and Register plugin, which hijacks wp-register.php. Any idea how I can make the recaptcha plugin work there?
http://www.jameskelly.org/wordpress-plugins/custom-login-and-registration-forms-plugin/
Thanks
I take it back, after disabling that plugin and using the standard wp-register.php hook, it still didn’t display the recaptcha form.
I’m stumped.
@Edward:
I have modified the plugin and now works for WPMU 2.6
http://yisheng.wordpress.com/2008/08/14/wp-recaptcha-for-wpmu-26/
I have the same problem as Edward. New users couldnt register and get the message: That reCAPTCHA was incorrect. I have downloaded the modified file but it gives the same result. Can anyone help?
@Martien:
Are you sure its not working? Because the modified one is working in my WPMU 2.6…
@Edward: Yes i am sure. I have deleted and uploaded the plugin and changed the modified file. Again the same message as i pointed before.
I think i am deleting the stuff and find another solution because this isn’t working
Is anybody else having problems with WPMU 2.6? I will investigate.
@Blaenk…yeah, I’m having the same problem. I uploaded and enabled the plugin, but the captcha widget isn’t showing up on my commments entry. However, it is preventing the commments from going through. I’m using WordPress 2.6.1.
Thanks for all the work you’ve put into this!
@Daniel: This is for WPMU 2.6.1? I will make a test install and try and figure out the problem.
This is just for WP. I’m not sure of the difference between WordPress and WordPress MU. I’m just using the default WordPress install on Dreamhost, with a template I customized.
Oh, well in that case do you have a screenshot of your settings? Because I have the exact same set up (Dreamhost, etc.) and it’s working fine apparently. Also could you list any comment related plugins that you have activated?
If that’s the case, then perhaps my customizations to my template have somehow broken the plugin. Let me do some testing with a generic template before I waste your time!
Thanks again for making this available to the public.
No worries. If you still encounter problems, please let me know what your version of your blog, any other plugins that may conflict (Not that necessarily do, but have to do with comments and other anti-spam measures possibly), and a screenshot of your settings for the plugin (With the keys censored if you like).
I installed the plugin but I am still getting spam. I tested it and if you don’t enter the recaptcha and press the submit comment it says no comment but the comment still shows up as spam in the blog. Do I need to change my templates or something?
@Ian Butterworth: You mean in the spam queue in the blog? Like with Akismet? This is normal and is detailed in the FAQ. Hopefully this addresses your issue.
This looks like the very plugin we’ve been looking for, but just installed 2.9.1 on a WP 2.1.2 installation and cannot seem to get the registration filter function to work. That’s to say, the recaptcha box shows up fine (no obvious errors), but I can fill in the reg form and submit successfully without filling in any recaptcha code (new user is created). Any idea what I may have missed? Thank you.
You say you’re running 2.1.2 right? I’m sure you have your reasons for using such an old version of WordPress (The latest is 2.6.2). If you would be kind enough to provide me with a screenshot of your settings I will try and see if I can fix whatever problem there is, it could be, however, that it’s simply too old. If I can fix it easily enough then I will attempt to do so, but if it is a hassle then I’m afraid I will simply have to say that those versions are not supported.
Thanks!
Hi – great plugin!
I get a JavaScript error in the console saying that “sub” is Null – see:
http://wordpress.org/support/topic/203160
Would be great if you had some help!
Thanks!
Thanks for your previous reply. I’m still getting comment spam, several a day caught by Akismet. I did turn off the, Allow link notifications from other blogs (pingbacks and trackbacks.)
Any tips?
[quote comment="22356"]I get a JavaScript error in the console saying that “sub” is Null – see:
http://wordpress.org/support/topic/203160/quote
OK, problem solved.
Actually, the call to the ‘comment_form’ hook in my template was BEFORE the “Submit”-Button, therefore the ID ’submit’ wasn’t even initialized when the JavaScript called it – hence it was NULL.
I have adapted my comments-php (rather than the plugin), and it works fine now – no JavaScript error any longer.
@Marco Luthe: Glad you were able to solve your problem, sorry for any inconvenience!
@Ian Butterworth: As the FAQ said, the spam isn’t being displayed, reCAPTCHA is doing its job. The problem is that the comment is shown to Akismet regardless, Akismet tags it as spam, and you see it in the spam queue. In other words, just ignore it and flush it regularly or disable Akismet (Which is actually no longer needed). But again, reCAPTCHA is doing its job, it’s just that Akismet still sees the comment and marks it as spam before reCAPTCHA can even take care of it itself. If you have any further questions please feel free to ask me
Thanks again for the help. I’ve disabled Akismet but I’m still seeing about 10 per hour comments in for moderation. Is there something in my template where the php needs modification. Or are these spammers cracking the captchas??
I note on your site if I submit a comment here without entering a captcha I get “Incorrect CAPTCHA please try again. On my site I don’t get that behavior. So I’m thinking there is something with the submit button code?
@Ian Butterworth: Well, look. Do you see the spam comments actually posted on the post? Or do you only see them in the moderation queue? If so, again, the FAQ says:
As I described in the previous comment, it’s natural behavior (I will work to change this behavior for future versions to not confuse anymore users). Those are just the spam attempts that are being shown, but you aren’t actually getting spammed, in other words, it’s not showing up on the blog hence reCAPTCHA is doing it’s job.
OK, I checked from another computer to be sure, it is the theme I was using. If I go back to the default Wordpress template, I ge the “incorrect CAPTCHA”. Perhaps you can put a note in the install instructions that some themes don’t work! Now I am a happy person that the CAPTCHA is working only that I need to sort out the theme
The Incorrect reCAPTCHA part doesn’t really have to do with whether the plugin works or not, it’s only for the user’s convenience. I don’t understand, however, why it didn’t show up for you. You’re using version 2.9.1 right? Sorry about any inconvenience, it’s just that I didn’t understand your situation, and still don’t. If you can clarify perhaps we can make it work with your other theme (Or vice versa, rather).
Argh, I see I’m still getting spam comments in for moderation. Yes I checked it is 2.9.1. Is there something else I should check?
My “Discussion” settings are
Default article settings
Not checked — Attempt to notify any blogs linked to from the article (slows down posting.)
Not checked — Allow link notifications from other blogs (pingbacks and trackbacks.)
Checked — Allow people to post comments on the article
E-mail me whenever
Not checked — Anyone posts a comment
Not checked — A comment is held for moderation
Before a comment appears
Checked — An administrator must always approve the comment
Checked — Comment author must fill out name and e-mail
Not checked — Comment author must have a previously approved comment
Comment Moderation
Hold a comment in the queue if it contains or more links. (A common characteristic of comment spam is a large number of hyperlinks.)
When a comment contains any of these words in its content, name, URL, e-mail, or IP, it will be held in the moderation queue. One word or IP per line. It will match inside words, so “press” will match “WordPress”.
Blank
Comment Blacklist
When a comment contains any of these words in its content, name, URL, e-mail, or IP, it will be marked as spam. One word or IP per line. It will match inside words, so “press” will match “WordPress”.
Blank
@Blaenk, @Ian Butterworth:
I have just followed your conversation. Actually, Ian seems to have disabled the plugin, as I wanted to see it in action and it didn’t show up.
Start checking from the beginning:
- What happens if you leave a comment with a wrong reCAPTCHA?
- What happens if you leave a comment with a right reCAPTCHA?
- Do you have other plugins installed that might interfere?
- Have you followed the instructions for the plugin?
You should use Firefox plus the Firebug addon to see if there are any JavaScript errors.
I always (de)activate my plugins one by one to see what is causing the problem.
Any other comment / antispam plugins installed?
Some addon for the browser?
If I can be of help, just say so.
Good luck – I know that sometimes it’s a mess to find an error in WP.
@Marco Luthe: Thanks a lot for the assistance Marco, I really appreciate it.
@Ian Butterworth: Hmm, perhaps this:
[quote comment="22457"]
Before a comment appears
Checked — An administrator must always approve the comment
Checked — Comment author must fill out name and e-mail
Not checked — Comment author must have a previously approved comment
[/quote]
So that means that even if the comment is not spam, you are emailed to await approval.
I don’t see the plugin in action on your blog right now so I can’t test it, I assume you’re tinkering with the settings to try and get it to work. I know it might seem repetitive, but if you were kind enough to describe the exact behavior you are experiencing which makes you believe that it is not working, with the finest detail, I would appreciate it and it would definitely help in solving this problem. As of now I’m confused, either you’re not getting spam showing up on the blog but you do get it in the moderation queue, or you are getting spam showing up on the blog (Which would mean something is interfering with reCAPTCHA).
Thanks for your great plugin. I use it together with K2 RC7 und I’m having 2 problems with it:
1. In Internet Explorer (I use IE7) the recaptcha_response_field does not show up. I figured out, that it is somewhere hidden (not visible, but you can type) on the left hand side of the browser window.
2. If I enter a wrong response, I do not get an error message. It seems that the message got posted (even if disable AJAX in K2). Only if I refresh the screen, I can see that reCaptcha filtered it out without any notice.
Do you have any ideas?
I’ve turned it back on for testing but I’m getting a lot of spam.
I did some more testing on IE6 and Firefox. I see that entering only one of the two captchas usually puts the comment in for moderation. Is this supposed to happen? I see it in Firefox and IE. As I understand it, if I don’t enter a captcha or the wrong captcha the comment should never go into the moderation queue?
No captcha or otherwise wrong gives the incorrect captcha.
The fully correct captcha both words puts the comment in for moderation.
As for plugins they are all off. I looked at Firebug with my limited experience in it and don’t see any errors.
Finally, maybe I”m confused on this. I get the spam in the moderation queue but NOT on the blog?
So perhaps this is how the plugin is supposed to work. My goal is to not have to sift through the moderation list in WP Admin to see if any comments are valid.
@Ian Butterworth: So if they don’t give a captcha or they give the wrong captcha, then it is not posted because it is spam, but if they DO give the right captcha, therefore a valid comment, it is still posted to the moderation queue? I already told you why in the previous comment:
Uncheck that and it should solve your problems.
@Stephan Brenner: I run K2 myself, but not RC7 and apparently not with AJAX. My first guess is that it has to do with the fact that you have AJAX enabled. This plugin, as far as I know, doesn’t work with AJAX. You disabled it and tried again, but did you flash your cache (Both on WordPress, be it WP-Cache or WP-SuperCache or any other, if you have one)?
@Blaenk: Thanks for your reply. Flashing the cache solved the problem of the ‘not appearing error message’. Still the IE7 problem remained. I finally fixed it by modifying the wp-recaptcha code to use Custom theming.
@Stephan Brenner: So your problem is fixed? Glad you were able to fix it and sorry for any inconvenience
thanks blaenk for your great work
the latest version of the plugin doesn’t work probably with the latest version of wpmu registeration form
when a user signs up for a blog and at the latest step he goes back to the first step
latest version of wpmu is 2.6.1
and here’s the link for the plugin page on wpmudev site and some other users complains about the same problem
thanks
@EGMEDICINE: Thanks! So I’ve heard, I just wanted someone to confirm it. I will test it out and see what is going on this week and will post an updates if I find the solution.
I unchecked the administrator must approve and now I’ve got tons of spam on the posts. What to do? I’ll leave the site as is except deleting the comments if you want to check http://www.misterian.com and make any suggestions
I too am experiencing the redirect issue on the second step of registering with WPMU 2.6. Any ideas yet. I’d be happy to help test/determine the issue. This is using 2.6 on a Dreamhost install.
Just wanted to add that I’m running 2.6 and 2.91 of recaptcha.
@UncleKaos: Thanks for the heads up. If you guys would be so kind as to bear with me until tomorrow, I will do a test install and run through it to see what can be causing the problem. I imagine it has something to do with the hooks that changed or something. I suppose you aren’t using any other plugins that might be interfering with the registration process?
I will get back to you guys once I figure something out, sorry for any inconvenience!
@Ian Butterworth: I’m sorry, but I went to your site and I see absolutely no spam comments. I’ve explain the possibility many times over too. If all you’re seeing is comments in the moderation queue, that is normal. As long as you don’t get real spam on your posts (That is, visible to the regular viewer) and non-spam is able to go through, then everything is perfectly fine. If you have any questions please do ask. If the problem still occurs, please be kind enough to restate your entire problem from scratch, perhaps then we will understand each other. Sorry for any inconvenience!
My sincere apologies if I am confusing things.
I am deleting the spam daily. I saw your test post. See the following posts for spam that got through in the last hour of the several.
Hre is an example of spam that got in in the last hour:
http://misterian.com/2008/08/olympic-oval/
And I checked it from a browser that is not logged in to my wordpress account to be sure.
@Ian Butterworth: I see exactly what you mean now, sorry for the confusion. It does indeed look like spam is still getting through, however, reCAPTCHA seems to be doing its job. I recommend you run Akismet as well which should at least put those posts into the moderation queue, whilst allowing non-spam posts to go through untouched.
The reason the spam is getting through is most likely due to people who are paid to solve CAPTCHAs. Believe it or not, but it’s true. reCAPTCHA is arguably the most successful and effective CAPTCHA system and the only way that people have been able to ‘get around it’ is by hiring people to solve CAPTCHAs and manually spam. If you simply look at the reCAPTCHA discussion group you will see lots of spam regarding this.
So my recommendation is you install Akismet. This should stop any spam comments but will also show any spam attempts that didn’t go through (Akismet still sees them). I guarantee you that you shouldn’t have to be scrolling through the Akismet queue to see what comments are spam and which aren’t, because the only thing that gets through reCAPTCHA are non-spam posts, and if it’s in the queue it’s because it is spam for sure, so you have a fool-proof system. All you have to do is, every once in a while, flush/delete all the comments in the Akismet queue, of course.
Let me know how it goes and i’m sorry for any confusion and/or inconvenience!
Thanks very much for your assistance!
@Marco Luthe: Hi Marco, hi Blaenk, got exactly the same problem, and I have moved the “do_action(’comment_form’, $post->ID);” after the SUBMIT button… It is working fine, but the side effect is that the CAPTCHA interface is now after the SUBMIT button. Not nice from a user experience point of view. Any clue to fix that?
Thanks,
Nicolas
@Nicolas: Are your submit button’s id and name attributes both “submit” ? Because the plugin uses JavaScript to place the reCAPTCHA form at the correct place and to do so it uses the Submit button’s location, which it gets using that information.
Hi, I’ve been using WP-reCAPTCHA on my blog site. WP-reCAPTCHA-2.9.1 was working fine with WP-2.6.0. I’ve since updated to WP-2.6.1 and WP-2.6.2. With both versions of WP, I can’t seem to get the plugin to accept my API key.
When I try to enter my API key, I get brought to my blog’s log-in page. Nothing happens when I re-authenticate: I end up back at the log-in page again. Going back to my blog, it’s clear that I’m already logged in. I’m guessing there’s an error condition in WP-reCAPTCHA that I’m not seeing.
Any ideas what’s going on? Thanks!
Hi, I have the same problem. reCaptcha was working fine before I upgrade WP to the latest version. Since there, I am not able to register new user as reCaptcha keep prompting “That reCAPTCHA was incorrect.”
Appreciate if anyone can help.
Hi All,
I have integreated WP-reCAPTCHA plugin on my website, but I have a problem with registrations. Users are able to comment, but not to register. After correctly filling reCAPTCHA code, they are informed about error : ERROR: The reCAPTCHA wasn’t entered correctly.
If filled code is entered incorrectly, register form say that: “ERROR: The reCAPTCHA wasn’t entered correctly. That reCAPTCHA was incorrect.”
WHY???
Please try it on http://www.spravcesiti.net/wp-login.php?action=register
Thx for help, Milan
Really nice work. Thank you Blaenk.
My two wishes for a next version:
- Language support: Changing the error-string for the Captcha in the admin-area
- Option to activate the plugin for the login-page too (not only the registration)
Regards,
Daniel
(Sorry for my bad english)
Hi,
I’ve been using your plug-in for a few months and I have to admit it’s really great, and it is very usefull for the comments.
For the MailHide part, I have to admit the use is for me very limited: I receive all the emails that you send to an address [at]mydomain.com , so, I receive email wether they are addressed to xxx[a]]mydomain.com or x…[at]mydomain.com . This is also the case for most of my friends that own their own domain name. Is there a way to replace the whole address with, for example, a message like : “To see the email address, click here.” ?
Thank you very much for your help
@Bajeminn: Thanks for the compliments. Even I were to add such a feature you’d still be vulnerable. The problem lies in the fact that any email sent to your domain is forwarded to you. So if I email a…@yoursite.com you still get it. So basically the spammer doesn’t need to know what your personal address is so long as they know your domain. Given this fact, even if I were to implement a feature where the viewer would have to click to view the email, they wouldn’t need to view the email in the first place. Does this make sense?
Unless I’m missing something? If I am please tell me, would love to help improve the plugin in any way I can it’s just that it seems as if implementing a feature such as this one wouldn’t help at all. But it’s very possible and easy to implement, so if you’re still interested in such a feature I will gladly implement it for the next version. I’ll make it so that you can set the replacement text to whatever you want.
Well, I completely understand your point, that is really logical
But i discovered that, even if you have a domain, spammers won’t try addresses on this domain unless they find the addresses on the internet (well, at least it’s the case most of the time). So, if you own yoursite.com , they won’t try w…@yoursite.com (or w…@yoursite.com in our case) unless it’s written somewhere.
If you don’t feel the need of implementing it in the official version, I’d like if you could post the code somewhere so I can use it
@Bajeminn: No worries, I’ll gladly implement it in the future version, should be really easy. Only problem is I have no promises on when the new version will be coming out, but given the fact that many people have been having problems with the WPMU side of things, it might be soon, subscribe to these comments just in case, either way you’ll be notified of the new version thanks to WordPress’ awesome new notification feature.
@Blaenk: Thank you very much
So, I’m not sure why, but I’m still getting spam comments even after I added this plugin. I tested myself and I can’t comment without writing the captcha, but somehow I’m still getting 20-30 spam comments a day.
Any ideas?
Is ist possible to enable WP-reCaptcha for the login-screen?
hi there,
i’ve just intalled wp latest version and recaptcha latest version. whenever someone makes a comment the date time is shown as:
By whateveruser, %PM %550 %e%q, %2008 @ %0:%Oct %p
is there any way to make it look the way it should?
@mike: I don’t think that has anything to do with WP-reCAPTCHA. Or, does this still happen when you disable reCAPTCHA?
I’ve installed sexycomment and now reCAPTCHA keep appearing twice before and after the comment box, any way to fix this?
[quote comment="24042"]@mike: I don’t think that has anything to do with WP-reCAPTCHA. Or, does this still happen when you disable reCAPTCHA?[/quote]
hello, well, i have deactivated reCAPTCHA and the same error happens!
By miveranoazul, %PM %550 %e%q, %2008 @ %0:%Oct %p
so i understand that does not have to do with reCAPTCHA then… I’ll have to try to find out…
greetings!
Allowed tags:
i get this code (see above) over my recaptcha box on my blog. any ideas how i can get rid of it?
@Susie: you can’t see the html code in my original post, but this is what it is: Allowed tags:
Use the pre tag, but anyways, that’s part of the theme you’re using. The theme placed it under the comment box I guess, or something. You’d have to go to /wp-content/yourtheme/comments.php I think and change it around.
@Jed:
hey. did you ever find a solution for this issue? I have the same issue.
I really like your WP-reCAPTCHA plugin! I use it on my web sites and I highly recommend it to my readers.
@Jed:
I have the same issue. since upgrading to 2.6.3
I have multiple domains here on powweb. All running wordpress as blog/content management. On the redirected domains (via htaccess) there are a couple of plugins (wp recaptcha and xml sitemap generator) I am using where I kinda end up in a loop when trying to save the settings. If I select certain setting options, I am taken back to the login page of wordpress. However, the login page does not allow me to login to save the settings. I am however logged in. If I just shorten the url to the admin dashboard or any other admin area, no problem. Just won’t let me pass the login page when trying to save options on these 2 plugins. I have the plugins successfully working on my main domain, no problem with this issue. Only on the ones getting a htaccess redirect. I’m guessing it could be a problem with the htaccess file (who knows) or permissions (doubt it… but who knows). Anyway, if anyone has seen this behaviour and has a solution or even a good guess, I sure would appreciate it.
Hello Blaenk,
On the user-registration page of a friend’s blog which is running WP 2.6.3 and WP-ReCaptcha 2.9.1, the captcha widget is added only to the the last form, in this case being the OpenID form, but not on the first. This is also the case on this blog of yours. Any remedy?
Additionally, on my freind’s blog, the reCaptcha widget is displayed on the same line as the “What is OpenID link”. This is unlike yours! I have not patched or styled the log-in page in an way.
Lastly, what created the password fields on the OpenID registration form?
when i tried re-captcha plugin on WPMU new versions i got the same very serious problem everyone using it with WPMU faced, the user is redirected to the first page of signup process.
it has been months now and the problem hasn’t been solved… please help
@Fouad Fakhreldeen: I am working on fixing that problem. There isn’t much WPMU Documentation so I’m at loss as to what is causing the problem. Rest assured though, I am working on fixing that problem and will try and do so as quickly as possible.
I have noticed though that the User Registration does work fine, it’s just the blog registration that doesn’t.
Hi my friend
I was using WP 2.6.2 and time after I visited my Fantastico Installer and He recomend me an update from wp 2.6.2 to wp 2.6.3 and how its automatic I press the button and WP update automatically.
I used to work in Firefox and there I dont see any problem with my blog, but when I checked the blog in Iexplorer 7 and 6, its crashed, its say Operation Cancelled, and return me a dnserror.html (found it in system32 and so on)
I desactivated the plug-in and its work great, can you help me?
Hi I have found in google thats sitemeter have the same problem, and its because the javascript load before charge the page, and I need to add defer=defer to the start of javascript, but how can i do thats with wp-reCaptcha to wordpress?
Alright guys, I am very sorry for the time it has taken to get the issues fixed but most of them are fixed now. There should be a new release soon if not tomorrow. The main issues fixed are the WPMU signup redirection issue and I’ve also added options for replacing the hidden emails in different ways.
As for those of you with WP 2.6.3 problems (Non-WPMU), please restate your problems as specifically as you can so that I can debug them better, as of now it can be many different things that are causing the problem.
Hi – I just installed the plugin, and it seems to be working, (i.e. I can’t post a comment unless I fill in the captcha fields), but I’m still getting spam… Most of it seems to be from web addresses that end in “/map.html” (e.g. newhelpguy.com/map.html )
Any ideas about what’s going on? The only issue I thought that might be doing this is that I have an older version of Akismet (2.1.3) rather than the latest 2.2.1.
@Mike: Alright look, no offense to you or anything but this has been asked countless times. You AREN’T getting spam, the thing is that the comment gets checked by Akismet whether or not it gets stopped by reCAPTCHA. So say a spam bot is spamming you, each comment it sends gets checked by Akismet before reCAPTCHA notices it’s spam and discards it. This means it gets stored in the spam queue of Akismet, but you aren’t getting spam.
When you have Akismet + reCAPTCHA running, think of the spam queue as a ‘what comments have been marked as spam by reCAPTCHA’ queue instead. All in all, Akismet really isn’t necessary when running reCAPTCHA. You should try it for yourself once. This will save you the confusion and you will free up some resources on your server.
The only spam that could still get through if you only have reCAPTCHA running is human spam, meaning some human manually filled out the CAPTCHA and spammed you, but this is really rare as humans must be hired to do such a task, not to mention it would be very slow. If for whatever reason you do encounter spam with reCAPTCHA running by itself then it means this is happening, then you can run Akismet to take care of the problem.
@gharbeia: It has been fixed for 2.9.2. The thing is that people registering with OpenID will still have to fill in the reCAPTCHA.
Thanks for the clarification – no offense taken. I had looked through the comments (and google), but didn’t see this explanation. Also, if so many people don’t get that this is how reCAPTCHA functions with Akismet, maybe it would be worthwhile putting it in the Faq or Other Notes description of the plugin – just an idea.
Yeah I will definitely add it to the FAQ on the WordPress Plugin page, I had thought it was already there, no wonder. It’s been at the official reCAPTCHA site but I understand that more people look at the WordPress Plugin page instead.
Glad everything is cleared up and expect to see those clarifications in the new version’s FAQ which should be coming up as soon as I clarify one last conflict with the OpenID plugin.
[quote comment="25223"]@Fouad Fakhreldeen: I am working on fixing that problem. There isn’t much WPMU Documentation so I’m at loss as to what is causing the problem. Rest assured though, I am working on fixing that problem and will try and do so as quickly as possible.
I have noticed though that the User Registration does work fine, it’s just the blog registration that doesn’t.[/quote]
Any news?.
Thanks for your great job!.
Everything is fixed and I submitted version 2.9.2 to the WordPress Plugin Database, waiting for it to apply.
Thanks Blaenk! your work highly appreciated
@sk: You are very welcome
Muchas gracias por la ultima version del plugins de Recaptcha me soluciono y logre activar el recaptcha.
Excelente !!
Juan Carlos
@Juan: De nada, que bueno que te sirvió.
I have installed the plug in, and I’m very excited about using it… and supporting reCAPTCHA’s book digitizing efforts. So, many thanks and congrats on this great dev. effort.
I do have one problem though, with the most recent version of the plug-in, and most recent version of WP… it seems like my email addresses are being consumed by the MailHide part of the plug-in, but they are not being re-written… the full email address is wrapped in a MailHide generated link.
What I’d like is for MailHide to turn the emails into exa…@example.com, where the … is the link to the reCAPTCHA pop-up. I have “Show full email adresses to registered users…” selected, and set to work for all users. I didn’t put anything in the “EMail Replacement Text” or the “Reveal Link Title” text area.
Any idea what could be up?
@Matt: So you are saying that the email is displayed normally, but that it is a link to the MailHide pop up? When you edit the post which contains the email (Or is this happening with comments too?), are you using the Visual Editor, and are the emails being ‘linkified’? If you wouldn’t mind, I would appreciate a screenshot of your settings with your keys blanked out. Just the MailHide portion will suffice. And you are running the latest version 2.9.2 and the latest version of WordPress 2.6.3 right?
Sometimes this happens to me, but it is because I use the visual editor in conjunction with a firefox extension called Linkification which linkifies any emails and URLs that aren’t clickable that it sees on a page. So when I’m in the visual editor editing a post and it sees a plain text email, it linkifies it, and when the post gets saved, that formatting gets saved so it ends out being a linked email.
Of course, that’s just a rare problem that might not be what’s happening with you. Thanks for letting me know and when you have the time, I would appreciate the extra information I asked for above so that I can try and fix this issue (If it really is a problem with the plugin).
Hi, I have installed ReCaptch and it works like a dream but as soon as I enable Mail Hide it places the following text in the top of the comment field.
Warning: pack() [function.pack]: Type H: illegal hex digit in …… /homepages/htdocs/pnp/wp-content/plugins/wp-recaptcha/recaptchalib.php on line 242
and hides the mail address as it should. Any ideas?
@Mike Rawlins: Line 242 is the call to the pack function:
$ky = pack('H*', $privkey);I’m not absolutely sure what it could be. When you click on email links to reveal the emails, does it all work fine and all?
Also, do you know if you have the mcrypt module installed/enabled in your PHP installation?
When I click to reveal the E-mail address I get a Recapture challenge which results in an error asking me to submit it to supp…@recaptcha.net
I’m not sure about the mcrypt module. how do I find out?
@Mike Rawlins: Read this, it’ll tell you how (Do the phpinfo stuff it talks about). Then just CTRL+F for ‘mcrypt’ on that page where it shows all the information. If it’s there then it should mean you’re fine and that’s not the problem.
I have the same problem like Mike. any idea how I can fix this?
@David: If you could please tell me if you have the mcrypt module installed and enabled I would appreciate it. If you don’t know how to do this, read this for instructions on how to show your PHP installation information, which will show whether or not the mcrypt module is present (Which is required by MailHide).
When MailHide is off, does the regular reCAPTCHA for comments/registration work?
Hi, sorry for the delay in getting back to you, I’ve been away for a couple of days.
I have run the info script and it returns the following under mcrypt:
mcrypt
mcrypt support enabled
version >= 2.4.x
Supported ciphers cast-128 gost rijndael-128 twofish arcfour cast-256 loki97 rijndael-192 saferplus wake blowfish-compat des rijndael-256 serpent xtea blowfish enigma rc2 tripledes
Supported modes cbc cfb ctr ecb ncfb nofb ofb stream
Directive Local Value Master Value
mcrypt.algorithms_dir no value no value
mcrypt.modes_dir no value no value
Hi,
I’ve installed wp-recaptcha 2.9.2 on wordpress mu 2.3.3 as an optional activation (all wp-recaptcha files in /wp-content/plugins/), and am having a problem saving options after the plugin is activated.
When I activate the plugin for a user, I get a warning that that says recaptcha is not activated and I must enter the API keys for it to work. I then go to the options page for the user, and add all the necessary info; however, when I click Update Options, I’m then taken to the ‘options saved’ page for the main blog, not the users. When I go back to the users blog, none of the recaptcha settings are saved.
Any idea what I might be doing wrong?
Thanks.
- Jeff
Thanks for the great work! Works out of the box within minutes.
Hiya –
I am trying to get your (excellent looking) plugin going in Wordpress. WP is up to date, and is pretty well vanilla apart from a customized theme.
However, I get strange behaviour from the recaptcha plugin which varies between IE (7) and Firefox (3).
You can see the page in question here (any page in the blog, but this one will do):
http://www.intelligentdesign.com.au/blog/2008/12/08/new-comments-system-recaptcha/
In both IE and Firefox the recaptcha box appears to render correctly as part of the comments form.
In Internet Explorer, the plugin seems to work, in that failing to fill out the correct words will result in a comment not being accepted by the system behind the scenes, whereas doing it correctly means that it will be accepted. However, for some reason a comment which is rejected will appear to the user as though it has been accepted – in other words, no recaptcha message is ever apparent, and from the user’s perspective the result is the same (an apparently published comment) whether their comment has in fact been accepted or not.
In Firefox the comment form simply does not work. You can fill out all of the relevant boxes, but when it comes time to press ’submit’ nothing happens.
Comments work fine when recaptcha is not enabled.
I would love to solve this problem – please let me know what other information I can supply which might help.
@Paul: I think I might know what is going on, and one way to find out if my assumption is correct is by testing the plugin with another theme, preferably Kubrick/Default. Once you switch the theme remember to clear your site’s cache as well as your browser’s cache, then see if it works. Then let me know the results of the test.
Thanks for bringing this problem to my attention, hopefully we can get it solved.
Thanks for the speedy response. I will change the theme tonight. One other piece of information – I get this console error in Firefox whenever a comments section is displayed:
Error: coco is not defined
Source File: http://www.cocomment.com/js/enabler.js
Line: 1
Ok – I tested it with Kubrick/default, and as you suspected it worked well in both Firefox and Internet Explorer. I tested both valid and invalid input to be sure, and both behaved as expected.
So what do you think the issue is?
I should add that my theme is “Unsleepable” (unfortunately, I can’t find the page where I originally got it as Ben Gray, the author, seems to have removed it from his site).
Some more information – Ajax commenting being on or off in K2 makes no difference.
@Paul: Oh, that’s most likely definitely the case. You will need AJAX Commenting off as far as I know, though I haven’t tested it with it on (Although I suspect it wouldn’t work considering that the AJAX reCAPTCHA handling is different).
In your comments.php file, in your theme’s folder, see if you have a line something like this:
do_action('comment_form', $post->ID);It should be right before the closing form tag.
Yep – it has the following:
php do_action('comment_form', $post->ID);a little earlier, the submit button is as follows (surrounded by tags):
input name=”submit” type=”submit” id=”submit” tabindex=”5″ value=”"
Sorry, “value =” above is set to
_e('Submit','k2_domain');The form itself has the following opening (hoping the formatting works):
You mentioned something about cocomment in a previous comment, what is this, another plugin? Have you tried disabling it temporarily to see if WP-reCAPTCHA works? And when you checked your current theme with AJAX turned off, did you clear your cache after turning off AJAX? (Perhaps if you run a cache plugin on your wordpress installation such as wp-cache or wp-super cache, as well as your browser cache).
I actually don’t know – it seems to be built into the theme, or perhaps something to do with k2. Although I am a programmer by training, I must admit my knowledge of wordpress is fairly limited and the customization of my site has largely been tweaking the graphical elements and using pre-assembled plugins (hence my interest in recaptcha).
I will see if I can disable it tonight, perhaps it is something which is interfering with the way the comment box functions.
Although I find it odd that comments work fine, but then when recaptcha is added the ’submit’ button ceases to work.
Yeah I have gone to your site to test it out and understand what you mean about it not working, and the possible reasons are AJAX commenting and/or another plugin interfering with reCAPTCHA, which coComment seems to be a likely culprit for.
By the way, I myself am running K2 on this site (Scroll to the very bottom) and have been using it for quite some time, though I am using an older version (Not one of the release candidates). I doubt, however, that a newer version could’ve broken compatibility with reCAPTCHA as all reCAPTCHA needs from a theme is that do_action call I mentioned above. The only other thing I can imagine a theme doing to screw up compatibility with reCAPTCHA is AJAX commenting built-in, which is why it has to be off. Perhaps I can try to implement AJAX later on although reCAPTCHA using AJAX is fairly experimental or so I’ve read. In the meantime though it would probably be best to turn off AJAX (And remember to clear your site’s cache as well as your browser’s).
Thanks for the help – I will give it a go tonight and let you know what happens.
Forgive my ignorance, but how do I clear my site’s cache? It is running vanilla Wordpress, with no cache plugin AFAIK.
Don’t worry about your ignorance or anything haha, I don’t mind helping you out, I have the time more or less, and it definitely seems like you are trying to solve the problem on your part as well instead of having me try to figure everything out on my own.
One and the most usual way of checking if your site has a so called ‘cache’ is by going to your plugins list. If you see WP-Cache, WP-Super Cache, or any other type of Cache related plugin, then you have a cache. You would then proceed to that plugin’s options page where it would have a button for clearing/flushing the cache. You have to do this after every major change you do to your site, otherwise you won’t notice the changes. This is IF you have one of these plugins, if not, then simply clearing your browser’s cache should suffice.
Let me know how it goes
Ok, still no joy. I have removed the cocomment reference, which didn’t seem to be doing anything anyway. The page now does not report any js errors. However, the same problem persists.
I have been looking at the page source and cannot for the life of me figure out what the problem with the form is. Here is the form source as far as seems relevant:
http://www.intelligentdesign.com.au/blog/wp-content/themes/pb2/source_html.html
Ok, further investigation, it looks to me like something that the recaptcha code is doing is incorrectly substituting something for the ordinary submit button. I tried the basic form code with and without the recaptcha section, and the form is definitely functional without it, all other things remaining the same.
I will be busy today and tomorrow, but I’ll get back to you on Thursday most likely. I think I have a good idea as to what the problem is now.
@Paul: I see the problem now. If you look at the source, the submit button isn’t in the form field. This has to do with the way the theme is written, since the same Javascript is being used on my blog as well as many others. If you don’t mind, I would appreciate it if you could paste the code of your comments.php file to a pastebin, such as this one. Then link me to the code so I can look through it. It could be a simple matter of misplaced tags, or differently named names/ids. Make sure you have AJAX off. You do have AJAX commenting off right? And you already said it doesn’t work regardless, but it needs to be off.
Thanks!
Hi,
I have installed the plugin on Wordpress MU. I have installed it in mu-plugin folder (Forced Activation/Site-Wide) according to the installation instruction. 1st time it works fine. But during testing I have deleted the files from mu-plugin and installed it in plugin folder (Optional Activation by Users).
But due to my requirement I again delete it from plugin and installed it on mu-plugin folder. but now the menu “Site Admin > reCAPTCHA” is not coming…..
Please help……
i cant get it to work with the theme Inove (http://wordpress.org/extend/themes/inove) recaptcha just does not show up and when a comment is submitted it just does not do anything.
i hope you can give me a few pointers to get this to work with the theme.
@MicroChip123: Go to line 195 of comments.php and after it add a line with the content found here.
That should fix it. Remember to clean/flush your cache of both your site (If it has one) and your browser before expecting to notice any changes.
@Prasenjit Seth: I’m lost as to what your problem is. I recommend you disable the plugin, delete any trace of WP-reCAPTCHA from your server, then re-install it. It seems to me like you were indecisive as to where to install it and given that both ways are different, something isn’t where it should be. Therefore it should be easiest to just start over and this time choose your final location as to where you want it to be.
have done a lot of things on this website on recaptcha. iam not a computer but human. i think i know that humans are inquisitive beings and they want to do things with their hands
For some reason, reCapthca 2.9.2 didn’t work with our Wordpress 2.5.1.
Problem: Post a multiline comment and enter wrong captcha. The form bounces back without the comment, and there’s a javascript error.
Reason: a multi-line string is incorrectly encoded in javascript.
The problem lies in function recaptcha_wp_saved_comment(). Here’s the fixed version:
function recaptcha_wp_saved_comment() {
if (!is_single() && !is_page())
return;
if ($_GET['rcommentid'] && $_GET['rchash'] == recaptcha_wp_hash_comment ($_GET['rcommentid'])) {
$comment = get_comment($_GET['rcommentid']);
$com = preg_replace(’/([\\/\(\)\+\;\'\"])/e’,'\’%\’.dechex(ord(\’$1\’))’, $comment->comment_content);
$com = preg_replace(’/\\r\\n/m’, ‘\\\n’, $com);
echo ”
var _recaptcha_wordpress_savedcomment = ‘” . $com .”‘;
_recaptcha_wordpress_savedcomment = unescape(_recaptcha_wordpress_savedcomment);
“;
wp_delete_comment($comment->comment_ID);
}
}
@Tomi M: Thank you I appreciate your help. I will apply the fix and release a new version soon. Thanks again!
I think there is a slight error with saving comments when someone enters the capatcha incorrectly. The function recaptcha_wp_saved_comment needs to output script tags, like so:
Looks like line 567 is where the script tag should be inserted.
Thank you Justin Heideman I really appreciate your notification and fix!
Hey,
Thanks for the fix Justin.
Anyhow, the noscript tags seem to do nothing.
Since if I disable java-script for recaptcha.net via noscript recapcha is gone but the noscript tags have no effect.
Trying to make it so that if java-script has been disabled for recaptcha.net then the entire commentform is hidden.
User can not even leave a reply if java-script is disabled for recaptcha.net anyways so why leave the commentform enabled? Instead show the user a message stating that java-script for recaptcha.net must be enabled to leave a comment.
Thanks for the help,
Will
Hey Again,
Just to be clear, I don’t mean this:
http://www.designlessbetter.com/blogless/posts/making-recaptcha-validate
That only works if user has disabled java-script on your site alone.
I already got that worked out just fine.
What I want to do it stop users from trying to post a comment when the user has only allowed java-script on my site but has disabled java-script recaptcha.net.
And wow, what a bummer that if you enter the wrong catcha your comment is forgotten. Ouch!
Should be temporarily saved to database and retrieved back out on page refresh and then deleted once comment is successfully saved. Then user does not have to be sure and copy their comment every time when posting on a blog that uses this plug-in.
Thanks again,
Will
Hi,
Sorry about three replies in a row, but…
The plug-in does not save it’s settings correctly. I’ll explain briefly.
If I enter in all my info and then click save the data is correctly saved and plug-in works fine.
But if I disable the plug-in and re-enable it now all my settings are gone. Ouch!
Also, it should not break your comment page just because you have yet to set it up. Instead it should be truly disabled from the start. Right after I installed the plug-in I noticed it stopped the comment page from loading right after the area in which the plug-in displays.
And about my previous comment about it loosing the comment if entering wrong code. Not happening on my site but it sure is happening here on yours. Tried a few times to be sure, it forgets every time.
Please fix this..
Thanks,
Will
Hi Blaenk,
Thanks for such a revolutionary plugin which has helped stem the tide of spam. I’ve got one small problem I’d like to bring to your attention. The W3C validator fails to validate my site due to wp-recaptcha’s use of html. The error I’m getting is as follows.
Line 135, Column 27: document type does not allow element "style" here. <style type='text/css'>#submit {display:none;}</style>This html occurs in the noscript section of the html. I know what the problem is here but the question is what can be done about it. Does wordpress maybe allow hooks to output custom css in the head section of the page? This is currently the only reason for the site not validating so I’d appreciate your help.
Many thanks.
Blaenk I just realised that this problem has already been discussed here in the preceding comments and a link has been provided to a page with instructions on how to make it validate. Apologies for not checking more thoroughly. Thanks.
@Justin Heideman: Thank you! I will apply the fix shortly.
@Will: I intentionally made the plugin delete its settings when you disable it, otherwise if you disable it and want to get rid of it, the settings would still remain in the database. I guess I could revert that behavior if it bothers people though.
@Narada: Glad you were able to solve your issue. Unfortunately I still haven’t discovered a way of fixing this from within the scope of the plugin (So that you guys don’t have to edit any theme files). I will continue to investigate into the matter though.
Sorry guys, I was away during vacation. I will try to address any reported issues promptly. Thanks again for your understanding.
UPDATE: An updated has been released, version 2.9.4, with Justin Heideman’s fix. Comments will no longer be deleted if the CAPTCHA is not entered correctly. It should take a while for it to propagate through WordPress extend and the auto update notification system.
What would really make this plugin shine is to add an option to only enable ReCaptcha on posts older then X Days. Spam seems to mostly comes in on older posts.
Thank you for an excellent plugin. I apologize if this was addressed on an earlier comments page, but on my own WP plugin page (the website I’ve provided) when I use reCAPTCHA in IE6 the text box occasionally misplaces itself on the screen. Any ideas what might cause this?
I too am using WP 2.7 and K2 (the most recent nightly).
It appears to work fine on your site.
Also, unrelated to the reCAPTCHA, I see you have a “Notify me of follow-up comments via e-mail” option. How were you able to do that? I’ve been looking for something similar, but the few I’ve found have been especially buggy.
Thanks again!
The recaptcha box is pushed to the right, hiding under the sidebar, when logged out and using the ChaoticSoul theme (which comes with the WPMU theme pack): http://www.bloggingpro.com/archives/2006/03/23/wordpress-theme-chaoticsoul/
It seems to related to the themes choice of not wrapping the Name/Email/Website boxes under the comment box. Can wp-recaptcha override this style behavior to always be left-justified?
Hi, sorry for the delay in responding – Christmas etc!
Thanks again for your help to date. Assuming I have done this correctly, the code from my current comments.php file is here:
http://paste.pocoo.org/show/98392/
Paul
I created a patch that would allow for a grace period before the reCAPTCHA is displayed. This is good if you don’t have to inconvenience the first set of visitors to your blog.
http://pastebin.com/m384bfa8a
updated the patch, 7 days seems like a better default grace period.
http://pastebin.com/f5d3c3cc2
I have noticed an issue with failed captcha entries. It seems to get stuck in a “Duplicate comment detected” state. I have to modify the comment before it gets accepted.
Anyone have ideas on how to fix it?
I like the concept of recaptcha, but it has one major flaw that forced me to deactivate it.
If someone on my site has just typed in a few paragraphs of carefully thought out comments, and unwittingly gets one character wrong on the captcha, it blows away their comments when reloading a new captcha, and rather than type those same comments in again they are just going to get upset and walk away. If you could somehow preserve their comments while throwing up a new captcha, that would be truly golden!
Just a follow-up. Somehow it did perserve my comments on your blog, because when I hit submit I actually forgot the captcha box was there…why your word press and mine act differently is strange. I am using latest version of the captcha code that I am aware of…
@Gary: So you’re sure you’re using the latest version? 2.9.4? I actually committed/released the latest version BECAUSE of that fix, haha. Perhaps you haven’t upgraded yet, hopefully that’s your problem. If you do have the latest version then it’s possible that I didn’t commit the fix correctly. So I’d appreciate it if you let me know what happened
We just noticed a problem on our blog when someone is using IE7 (and possibly IE6). The first time our comment page loads, there’s no place in the reCaptcha box to type in the two words (and the “Type the two words:” phrase is also missing.
If we hit the reCaptcha refresh button, then the phrase and the text field appear.
Example page:
http://blog.anniefox.com/2009/01/06/inauguration-blog-for-teens-dc-bound/#comments
I cant seem to make this plugin work with the inove theme. I have followed your instructions about adding the code found here (http://paste.pocoo.org/show/95974/) to the comments.php file but still it doesn’t display the captcha after adding the code
Hi Blaenk,
Nice work on this plugin. I’m trying to use it on my personal blog and since the theme I’m trying to use (Fervens-A) doesn’t have the needed <do action… I added it manually on the comments.php file. Now the captcha shows up but I encountered a serious issue. It doesn’t care whether I type in the correct words or not.
My site is http://linuxbastard.is-a-geek.com and you can see it on any single post page. I tried it a couple of different ways even with a blank captcha input and the comment still goes through.
I have the plugin set to make even registered users fill in the captcha.
Hope you can help me with this.
I uploaded the wp-recaptcha folder to the we/plugins folder & enabled the plugin
At the bottom of the comments I get this error msg
ERROR: That reCAPTCHA response was incorrect.
Invalid public key. Make sure you copy and pasted it correctly.
How to get this to work?
Thanks
@ihci:
I fixed it – had the wrong url site keys
Thanks for a great plugin!
I’m having an issue where sporadically the recaptcha form does not display on the WordPress post. The user sees the typical ‘Leave a Reply’ form without the recaptcha box. The user goes to submit a comment and are told they entered an incorrect recaptcha response. (The comment does *not* hit the spam queue either, it simply vanishes.)
The users are reporting this from a variety of browsers. They all tell me they have javascript enabled, are not running any programs to block third party images, etc.
I am running wp-cache, however I’ve tried flushing the cash and this problem has been happening for a long time compared to the cache expiration dates.
If you have upgraded to Version: 2.9.4 in order to fix the comments not carrying forward when they mistype the CAPTCHA, and they still don’t carry forward, here is a tip for debugging:
Type comment, flub CAPTCHA, and submit.
(comment disappears)
View the page’s source and search for _recaptcha_wordpress_savedcomment
You should see that variable getting set in the head section and getting used down by the CAPTCHA to refill the textbox with the comment.
If it is not in those 2 places you can look at wp-reCAPTCHA.php to try and figure out why.
For me, _recaptcha_wordpress_savedcomment was not initialized in the head section, simply because I had commented out the call to in header.php. (I don’t remember why I commented it out).
Thanks for this tool Blaenk.
@Ken Roberts: I ment to say I had commented out the call to
in header.php.
I’m curious if there is a way to use both this plugin and TanTanNoodles Simple Spam Filter. I’d mainly like to have reCAPTCHA on my blogs registration page and let the Spam Filter handle the comment spam, but when I try to active reCAPTCHA when Spam Filter is active, I get the following error: “Fatal error: Cannot redeclare _recaptcha_qsencode() (previously declared in /home/onthewin/public_html/otwtestmule/wp-content/plugins/tantan-spam/plugin.php:519) in /home/onthewin/public_html/otwtestmule/wp-content/plugins/wp-recaptcha/recaptchalib.php on line 46.” Using both would allow me to continue receiving comment notifications, which I prefer.
Hi,
Can you please update the plug-in with new 2.7 feature that controls on which pages the css file is load on.
No need for this to be added to every page in admin cp for example:
Thanks,
Will
Hi, brill plugin, it works perfectly, except the captcha box is below my ’submit comment’ box, so people are forgetting to enter the recaptcha. Is there anyway to move it?
Example is here: http://www.holgablog.com/2009/02/02/the-best-holga-photos-from-flickr-january-2009/
Thanks!
andrew
[quote comment="29494"]Hi, brill plugin, it works perfectly, except the captcha box is below my ’submit comment’ box, so people are forgetting to enter the recaptcha. Is there anyway to move it?
Example is here: http://www.holgablog.com/2009/02/02/the-best-holga-photos-from-flickr-january-2009/
Thanks!
andrew[/quote]
Oops, I actually meant ’submit comment’ button, not box!
[quote comment="29495"][quote comment="29494"]Hi, brill plugin, it works perfectly, except the captcha box is below my ’submit comment’ box, so people are forgetting to enter the recaptcha. Is there anyway to move it?
Example is here: http://www.holgablog.com/2009/02/02/the-best-holga-photos-from-flickr-january-2009/
Thanks!
andrew[/quote]
Oops, I actually meant ’submit comment’ button, not box![/quote]
Fixed it, the theme I was using didn’t have ‘ id=”submit”‘ for the submit button.
Have a some problem. After adding comment opened page with “Could not open socket “. What is?
Every time I upgrade wordpress my wp-recaptcha keys are lost and I have to re-enter them. Is this by design or is something in my setup messed up?
Great plugin, however the current version (2.9.4) seems to have problems with .co.uk addresses in the mailhide function.
only linkind emai…@domain.co and not the full emai…@domain.co.uk I am looking through your regex now to see what’s happening.
NOTE: with regard to my above post, this only affects non hyper linked emails so: “%\\b([\\w.+-]+@[a-z\\d.-]+\\.[a-z]{2,6})\\b(?!\\s*\\[\\/nohide\\]|(?:(?!]*>).)*)%iU’” on line 307 is the culprit code.
Also your hyperlink matching regex on line 303 works fine with .co.uk addresses, However it does not replace the text of the link.
So if the html is: blah@blah.co.uk the email is not hidden as b…@blah.co.uk is still visible, but then this is more down to user error, and an aesthetic problem.
Cheers
Buzz
Hi Again,
I have replaced line 307 with the following: $regex = ‘|[A-Z0-9._%+-]+@[A-Z0-9.-]+\.[A-Z]{2,4}|i’; this is a very loose match however it does solve the issue I have described above.
Cheers
Buzz
Hello,
I would love to use this, but as soon as I installed it, my K2 theme was pushed to the left and my header image repeats… Something is wrong with the DIV layout or something else…
Anyone?
sdfs@Andrew: I have the same issue. How did you fix this? I see you said that the theme did not have an ID for ‘ id=”submit”‘ where did you add this? Was it in the themes submit comment section of the code? Also, did you just put id=”submit” for the section of the code where the submit button is? Sorry, for a dumb question, I am really new to this. Thank you.
Hi, reCaptcha is not showing in the current theme I’m using. I tried with other themes it works, however with the compositio theme for some reason It dosen’t work. Played around with the comments.php code to see if it was a problem with the from or div tag, but no success. Here is the code comments.php http://paste.pocoo.org/show/107056/ (I saw it was asked for helping).
thanks
Right before line 70 add this: do_action(’comment_form’, $post->ID);
thanks a lot worked great
very good. thanks
Thanks a lot for this, but somehow none of the captcha plugins appear on my WPTP-Chocolate theme.
I couldn’t find do_action(’comment_form’, $post->ID); in the theme I’m using, inside its form so I added it there. Still no appearance of the captcha. I thought it might be a cache, but I’m not using any on the cache plugins on the site in question here. I have pasted my comments.php here => http://paste.pocoo.org/show/111695/
Any ideas?
Sorry I should mention I removed the do_action function in the above paste as it didn’t change anything.
can we use this in a custom form we have for a formmail script?
can we use this in a custom form we have for a formmail script? we have a page in our blog that uses the old formmail to send form data
I don’t see why not. Keep in mind this will only show up in the comments for said form though, and I doubt that form has/will have comments. Your best bet would be to go to the recaptcha site and look at the libraries that might help you, best bet would be the php library. You then use this to integrate recaptcha into your formmail script. It entails programming though.
Right BD, our page with the form has no comments. I looked at recaptcha site, php library and the guide, I think I can integrate the library with our formmail php. But I still dont know how to get this plugin to load recaptca just before our custom form. The form is plain html inside WP page. Is there a special replacement tag to load this plugin in a page/post, just like will be replaced with readmore or something like that?
Well, this plugin actually has nothing to do with your integration of reCAPTCHA with FormMail. You wouldn’t use my plugin for what you are trying to accomplish. Instead, you will have to read the documentation on the site to figure out how to integrate the PHP library with your FormMail plugin.
I really like the idea behind reCAPTCHA and the captcha is really professional. I was happy, there is a plugin for wordpress comments until I did not get it to work.
Comments are not being posted after the user enters email/name/comment, fills in the captcha and clicks the submit-button. It just reloads, the comment is still in the input-field but is not submittetd. If the user fills in the captcha incorrectly, the comment is posted as spam.
Example: http://www.wickipedia.at/wicki/?p=330
Also, the email obfuscation is not working. The email adress gets a reCAPTCHA-Link but is not obfuscated. Example: http://www.wickipedia.at/wicki/?page_id=10
I read trough all the comments here and around the web and also tried to use an other template. I still can’t get it to work. I don’t want any other captcha, so I am aprecciative for any clue.
The submit button stays within the CAPTCHA box on the page
Once you hit submit, the application shoud direct you to another page like a “Thank You” page acknowledging the reader’s comments. Any suggestions?
Howdy! So we’re using recaptcha in our Wordpress Mu 2.7.1 install (in “forced activation” mode) , mostly to protect against spurious user registrations (we let akismet catch spam).
Anyway, it would appear that it works OK on the front end, but in the backend, blog-level (and probably site-wide) add user form (*blog-name*/wp-admin/user-new.php ), the recaptcha form isn’t emitted and therefore you can never add users. I’m guessing the hooks that apply to the backend new user form have changed, but this essentially means you can’t enable recaptcha user registration gatewaying because it’ll bust the backend.
Thoughts? Am I nuts? Anyone else seeing this behavior?
Hello Daniel, thank you for the heads up, I am currently looking into this. Sorry for the inconvenience, I will post an update as soon as possible.
Thanks again!
Daniel, I believe I have fixed the bug you mentioned. I am finishing up fixing a couple other bugs and will release update 2.9.5 soon, at latest being tomorrow. Thanks for your patience and for letting me know about it!
Blaenk,
This is great – thank you!
–DJCP
i get ERROR: That reCAPTCHA response was incorrect.
if javascript from reCAPTCHA site not allowed.
can this be fixed?
Openid isn’t working side by side with recaptcha or is it intended you enter your openid + solve the captcha?
If so I vote for an option to turn off recaptcha for openid users
Is there a way to add this plugin to the login panel?
So when a user has an account they have to give loginname, password and recaptcha to login.
This will more prevent brute force attacks to (an) account(s).
Hi,
I have just installed & activated the plugin for WP. I wish I could show the error messages ( as when the user does not fill the form, or fills it incorrectly) on the same page, rather than being taken to another page. Can I do this?
Thanks.
Just installed the plugin and it works like a charm! However I’ve got some thoughts about how it could be made even better here.
Hey guys, I have released 2.9.5 which fixes a few bugs. I have planned features for the next version which I will begin to work on soon. Hope this version solves the problems/irks you guys had. Let me know how it goes!
Hi -
I installed the wordPress reCaptcha plugin. It appears fine but is below the “post” button (see example here – http://kitlas.com/2009/05/744/).
This makes it confusing for users. How can i get the “post” button to appear BELOW the reCaptcha form?
Hello Josh, this should be an easy fix.
You will have to go to your theme’s comments.php file in wp-content/themes/yourtheme/comments.php. Look for the line that starts something like: input class=”SubmitComment” (CTRL+F if you must). Right after that text (After the class=”SubmitComment” text) add a space and the text id=”submit”.
It should end up looking something like this.
Hope it fixes your problem!
@Blaenk: Awesome! That did the trick. Thank you very much!
WPMU 2.7.1 installed and just installed your plugin through the autoinstall process. Entered in my keys and such and enabled it for comments and signup yet the signup process completes without ever showing recaptcha. Can you please let me know where the code for the captcha is supposed to be so i can take a look at it? Thank you.
Tony, what do you mean installed with the autoinstall process? I don’t know if WPMU has a plugin browser/installer in the admin interface now, but if it does, don’t do it because WP-reCAPTCHA has specific instructions based on how you want to install it. I recommend you re-install it manually. Also make sure to enable reCAPTCHA for the signup page in the admin interface reCAPTCHA options.
Hi,
I am facing a strange problem with MainHide. It works perfectly for u…@domain.com and hides the whole address. However if the address has a subdomain it only hides part of it.
E.G. u…@sub.domain.com is shown as EMAILHIDDEN.com
any help is greatly appreciated.
Thanks
see it works here! but not on my blog!
Can you give me a URL to an example post? That would help me figure it out, thanks!
@Blaenk: here you go, thanks!
http://cifellows.org/match/beverly-woolf-at-department-of-computer-science/
It’s actually a bug that I carelessly left in. I think I have fixed it, I am going to test it:
b…@cs.umass.edu
It might not work, I might have to change one more thing. Rest assured I am working on the fix and if I don’t update the plugin by today, it will be up by tomorrow most likely.
EDIT: Yeah it worked. I’ll release an update shortly.
@Blaenk: thanks a lot! where is your Amazon Wishlist?
The bug has been fixed and the plugin has been submitted. It might take a while to propagate for you to install it using the auto-upgrade/install process, or you could simply visit the wordpress extend page for it at the link above to install it manually. The version number is 2.9.6 (Which is the version you get when you click download).
Let me know if you have any other problems. In the meantime, I have planned features/improvements for a future version that I will be working on soon.
And by the way, here is my Amazon Wishlist
When the “Needed capability” is set to “registered” in WPMU, registered and logged in users still see the CAPTCHA because capabilities/roles system isn’t really fully functional in WPMU. Here is a fix that seems to work pretty well:
if (($needed_capability && (current_user_can($needed_capability) || ($needed_capability == “read” && is_user_logged_in()))) || !$recaptcha_opt['re_comments']) {
Instead of:
if (($needed_capability && current_user_can($needed_capability)) || !$recaptcha_opt['re_comments']) {
Thank you for the fix! I will add it in and release a new version soon.
just wanted to let you know that it breaks functionality with dagon design form mailer (when its using recaptcha). Has anyone found a solution for this?
thanks in advance
Hi,
Long time I haven’t tested the XHTML compliancy on my site, and I encounter an issue with WP-reCapatcha, related to the inclusion of “style” tag in the “body” section:
#submit {display:none;} (line 483 of wp-recaptcha.php
According to the W3C validator:
document type does not allow element “style” here
[style type='text/css']#submit {display:none;}[/style]
✉The element named above was found in a context where it is not allowed. This could mean that you have incorrectly nested elements — such as a “style” element in the “body” section instead of inside “head” — or two elements that overlap (which is not allowed).
One common cause for this error is the use of XHTML syntax in HTML documents. Due to HTML’s rules of implicitly closed elements, this error can create cascading effects. For instance, using XHTML’s “self-closing” tags for “meta” and “link” in the “head” section of a HTML document may cause the parser to infer the end of the “head” section and the beginning of the “body” section (where “link” and “meta” are not allowed; hence the reported error).
Any way to fix that in a next release?
Thanks for your help,
Nicolas
Nicolas, have you tried going to reCAPTCHA settings and checking the box “Be XHTML 1.0 Strict compliant.” ? Make sure you flush your browser and site cache (like wp cache or wp super cache if you have them).
@Blaenk: Oups… Suddenly feeling stupid
Thanks a lot Blaenk!
Don’t worry, it’s okay, did it work?
Hi,
I’m interested in writing a CAPTCHA module for WP — can I base my implementation on WP-reCAPTCHA?
Thanks
Well, if you want to write your own CAPTCHA system then you wouldn’t be able to use reCAPTCHA, as reCAPTCHA is its own CAPTCHA system, heh. For more information, check out: recaptcha.net.
Sure. I’m thinking of making a few modifications to the code in order to use it. I just see that a lot of the code is already quite useful. Thanks.
Oh, you made it seem like you wanted to create your own CAPTCHA system, which my plugin isn’t (It just interfaces with an already existing one, reCAPTCHA). You are more than welcome to modify the code in this plugin, and if you think you have enhanced the plugin in any way, I would really appreciate it if you were kind enough to provide patches to improve this one.
hello
Hi, I have installed WP-reCAPTCHA on my blog, but I can’t get it to activate. I am running the latest version of WP and WP-reCAPTCHA.
Hey! Thanks for a great plugin.
It’s so great, in fact, that I’m wondering if there’s a way to force it to show up in other places on the website, like a Contact Form? I read back through a few pages of comments, but nobody’d asked about that one.
Is it possible? Thanks!
Hmm, I’m not sure if the ‘contact form’ is part of WordPress or not, how did you get the Contact Form, using a plugin?
It was a plugin, yes.. Contact Form 7 – http://wordpress.org/extend/plugins/contact-form-7
That would then be up to the plugin’s author. I can’t really control that, sorry.
Ok, thanks anyways
i have other forms on my site besides comment and registration that are processed remotely (saleforce) I would like to use captcha on those forms – how can i use it? can i use some code snippet and copy it into the posting to have captcha checked with jquery for instance?
Karen
Hello there,
Just wondering before I implement. Has this been tested on WP 2.8 and does it work? I noticed that on the WP plugin repository that it only says it goes up to 2.7. Please advise..
Kind regards,
Saxamo
Hey Saxamo. I can’t get it to work on 2.8 if you get it work let me know…
Hello there,
@Karl: I just went to http://recaptcha.net/ signed up and downloaded the plugin for WP. I also got the hidemail keys. Uploaded into the plugin directory, added my settings and activated. Worked like a charm. Excellent actually. HOWEVER, I do get this error in IE8 – NOT that I use it, but you have to test.. I even tested it with xhtml strict enabled and that did nothing.. Error was still there, but once closed everything works as specified. FF does not have this problem, nor Opera.
HTH…
Webpage error details
User Agent: Mozilla/4.0 (compatible; MSIE 8.0; Windows NT 6.1; Trident/4.0; SLCC2; .NET CLR 2.0.50727; .NET CLR 3.5.30729; .NET CLR 3.0.30729; Media Center PC 6.0; .NET CLR 1.1.4322; Tablet PC 2.0)
Timestamp: Thu, 25 Jun 2009 19:19:05 UTC
Message: Object required
Line: 155
Char: 5
Code: 0
URI: http://www.saxamo.com/2009/05/09/scolymia/
@saxamo… thanks buddy. I have a plug in loaded that tells IE users to switch to Opera and FF.
Hi, thanks for the plugin. I would like to ask about the ability to use this feature on other pages. This has been asked but i’m gonna give it a second go.
I have a contact us form generated by a plugin, this contact us page called in a blank page using a brief codeword iside of [ ].
Is there anyway of calling this plugin into play this way or can someone consider creating a simple Contact Us plugin that uses WP-reCaptcha.
Thanks Again
Unfortunately, no. You would have to contact the authors of whatever contact form you’re using (Better if it’s a plugin as well) and ask them if they could implement reCAPTCHA (send them to the site, reCAPTCHA.net). It is likely that they will integrate it into their contact form given that it does add another thick layer of protection. Adding reCAPTCHA support to the contact form should not be too difficult for the author, and they will do it if they really listen to their users (Unless they have some personal grudge against reCAPTCHA, haha).
But yeah, sorry, it’s not technically possible unless I attempted some messy hack of a solution, which I honestly won’t do given that it’s not what WP-reCAPTCHA is for, and I’d have to do it for every possible Contact Form out there. Maybe some time in the future if the architecture of WordPress allows me to, I will. You will have better luck contacting the contact form’s author, though, like I said above.
Good luck!
@saxamo : I also have this IE8 problem. reCAPTCHA kinda breaks off the HTML code and makes IE8 forget about the HTML code below. Unfortunately, the code below is supposed to display my sidebar menu, which is then not displayed in IE8. It also gives me some javascript error.
So I deactivated reCAPTCHA for the moment.
It may be difficult to reproduce because I ran some tests on 3 computers with the exact same version of IE8 :
For 2 of them this problem appears very often but randomly (meaning that sometimes everything is displayed normally).
For 1 of them everything is always displayed correctly.
Is there anything more I can do to get that solved ?