How to prevent spam auto-registering account for XenForo 2.

[Thangvip9x]

Thangvip9x submitted a new resource:

How to prevent spam auto-registering account for XenForo 2. - Preventing spam and automatic account registration on XenForo 2.

Hello everyone, today I will guide you on how to prevent spam auto-registering nick for XenForo 2

View attachment 303926

To accomplish this, please follow my instructions.:

Navigate to the "PAGE_CONTAINER" template and find

<xf:if is="$xf.options.registrationSetup.enabled">
                                <a href="{{ link('register') }}" class="p-navgroup-link p-navgroup-link--textual p-navgroup-link--register"...

Read more about this resource...

 

[Tati Booyakah]

Has this been test on 2.3 RC2 and is safe to make these edits?

 

[Thangvip9x]

Has this been test on 2.3 RC2 and is safe to make these edits?

I've tested it, and it works well.

 

[Tati Booyakah]

ThanX for super quick response!
I will try it!

 

[Thangvip9x]

ThanX for super quick response!
I will try it!

Please try it out and let me know your feedback. Feel free to like if you find it helpful!

 

[Tati Booyakah]

I think this would benefit better being made into an addon so people don't get the file check error.
Other than that I will have to wait and see how well it works before I can give any further feedback!
Good Job Though!

 

[Thangvip9x]

I think this would benefit better being made into an addon so people don't get the file check error.
Other than that I will have to wait and see how well it works before I can give any further feedback!

Thank you

 

[Thangvip9x]

So search engines will need to enter password to index your site ?
the whole thing is nonsense

It doesn't matter, because this only affects the 'register' and doesn't impact the search indexing tool

 

[K a M a L]

It doesn't matter, because this only affects the 'register' and doesn't impact the search indexing tool

OK, I misread the instructions.

 

[Thangvip9x]

OK, I misread the instructions.

You're welcome! If you have any more questions or need further assistance, feel free to ask

 

[Thangvip9x]

I think this would benefit better being made into an addon so people don't get the file check error.
Other than that I will have to wait and see how well it works before I can give any further feedback!
Good Job Though!

Thank you

 

[Digital Doctor]

The code will block the IP for 300 seconds if the wrong password is entered

What about legit users that accidentally type the wrong password ?
Is there feedback to them they should wait for 300 seconds before trying again ?

 

[Thangvip9x]

What about legit users that accidentally type the wrong password ?
Is there feedback to them they should wait for 300 seconds before trying again ?

It will count down the remaining seconds and only lock after three incorrect entries.

 

[Digital Doctor]

It will count down the remaining seconds and only lock after three incorrect entries.

Can you screenshot that and put it in the description so people know how the tip works ?

 

[Thangvip9x]

Can you screenshot that and put it in the description so people know how the tip works ?

OK

 

[Digital Doctor]

I don't know what that is.

So this prevents brute force password guessing by blocking the IP for 300 seconds if 3 wrong passwords are entered ?

It will count down the remaining seconds and only lock after three incorrect entries.

your description says this:

The code will block the IP for 300 seconds if the wrong password is entered, ensuring XSS security.

should it say:

The code will block the IP for 300 seconds if the wrong password is entered three times, ensuring XSS security.

 

[Thangvip9x]

Can you screenshot that and put it in the description so people know how the tip works ?

Please take a look at the screenshot

 

[Digital Doctor]

screenshot

Is there a way to display like it is a xenforo page ?



Don't you need to display the username ?

 

[Thangvip9x]

Is there a way to display like it is a xenforo page ?

View attachment 304434

Don't you need to display the username ?

No, there's no need to have a username because we just need to block the automated bot tool.

 

[Thangvip9x]

View attachment 304432

I don't know what that is.

So this prevents brute force password guessing by blocking the IP for 300 seconds if 3 wrong passwords are entered ?



your description says this:

should it say:

Yes