Plugin / Spam protection, AntiSpam, FireWall by CleanTalk

This script is used for AJAX JavaScript checking. Different themes use different mechanisms of loading, so we use two methods for loading our script. If you absolutely know what you are doing, you can switch one of the methods off by defining constants in your wp-config.php file: define('CLEANTALK_AJAX_USE_BUFFER', false); //false - don't use output buffering to include AJAX script, true - use it or define('CLEANTALK_AJAX_USE_FOOTER_HEADER', false); //false - don't use wp_footer() and wp_header() for including AJAX script, true - use it

Yes, you can. Add this string in your wp-config.php file before defining database constants: $cleantalk_url_exclusions = array('url1', 'url2', 'url3'); Now, all pages containing strings ‘url1’, ‘url2’, or ‘url3’ will be excluded from anti-spam checking. Remember, that this option will not be applied in registration and comment checking – they are always protected from spam. This is similar to regular expression /.url1./ or wildcard like url1. For example: If you need to except these URLs: example.com/some/thing example.com/some/one example.com/some/body You should type this in wp-config.php: $cleantalk_url_exclusions = array('some');

Yes, you can exclude your data. Add this string in your wp-config.php file before defining database constants: $cleantalk_key_exclusions = Array('key1', 'key2', 'key3'); Now all fields in your submissions with the keys named ‘key1’, ‘key2’ or ‘key3’ will be excluded from spam checking.

Use special IP 10.10.10.10 in URL to test Spam FireWall. For example, https://cleantalk.org/blog/?sfw_test_ip=10.10.10.10 Attention! The incognito mode should be enabled in your browser when you do a test. To enable incognito mode press Ctrl+Shift+N for Chrome, Opera и Safari browsers; press Ctrl+Shift+P for Firefox, Internet Explorer and Microsoft Edge. A full guide to enable Incognito mode is here: https://www.wikihow.com/Activate-Incognito-Mode

To set up global CleanTalk access key for all websites in WPMU, define constant in your wp-config.php file before defining database constants: define('CLEANTALK_ACCESS_KEY', 'place your key here'); Now, all subsites will have this access key.

All anti-spam checks are held in the cloud and don’t overload the web server. The cloud solutions have a huge advantage since the parameters are being compared with information from more than 100,000 websites.

A lot of spam bots can’t perform JavaScript code, so it is one of the important checks and most of the spam bots will be blocked with the reason “Forbidden. Please enable JavaScript. Spam sender name.” All browsers can perform JS code, so real visitors won’t be blocked. If you or some of your visitors have the error “Forbidden. Enable JavaScript.” please check JavaScript support in your browser and do this JavaScript test at this page: https://cleantalk.org/checkout-javascript-support. If you think that there is something wrong in the messages blocking, let us know about it. Please submit a support request here: https://cleantalk.org/my/support.

CleanTalk works with Varnish, it protects WordPress against spam, but by default the plugin generates a few cookies for the protection from spam bots and it also disables Varnish cache on pages where CleanTalk’s cookies have been stored. To get rid of the issue with cache turn off the option ‘Set cookies’ in the plugin settings. WordPress console -> Settings -> CleanTalk -> Advanced settings Now the plugin will protect WordPress comments, registrations and most of popular contact forms, but will not protect some of rarely used contact forms.

Yes, it does. But you have to turn off the option ‘Use AJAX for JavaScript check’ in Advanced settigns of the plugin to be fully compatible with Accelerated Mobile Pages.

To close the notice please save the plugin settings again or it will be closed automatically within 60 minutes after the renewal.

СleanTalk is no longer supports PHP lower than 5.2 version because the support code have incompatibility with PHP 7 version. Please, upgrade your PHP. If you couldn’t perform that, let us know about it via support ticket here: https://cleantalk.org/my/support.

No. You don’t need to change anything in the plugin’s settings or in your CleanTalk Control Panel. The plugin will work regardless of the protocol.

The following possibilities are available for you in the Anti-Spam Log: Time period for all spam records you want to see. Filter spam records by their status: Any status, Denied, Approved. Filter spam records by your websites. Filter spam records by country they came from. Filter spam records by IP address, e-mail address or username. Available options for a specific record: Details – see item 4 below. Spam/Not Spam – press this string if our system made wrong decision and blocked or approved a registration, a comment ot a contact form submission. More about it here: https://cleantalk.org/faq#feedback_spam Delete – delete a record permanently. Personal blacklists – go to your website Black&White Lists page. Record details: block reason, body of the message, additional caught data.

Anti-Spam – will blocks users from selected IP or network from using contacts/messages/registrations/comments forms. Spam FireWall – will blocks users from selected IP or network from entering the website. Please, read more here https://cleantalk.org/help/sfw-blocks-networks

By default, all spam comments are placed in the spam folder, now you can change the way the plugin deals with spam comments: Move to the Spam folder. All spam comments will be placed to the folder “Spam” in the WordPress Comments section except comments with Stop-Words. Stop-Word comments will be always stored in the “Pending” folder. You can prevent the proliferation of Spam folder. It can be cleaned automatically using the option “Keep spam comments for 15 days.” Enable this option in the settings of the plugin: WordPress Admin Page -> Settings -> Antispam by CleanTalk -> Advanced settings -> enable “Keep spam comments for 15 days” -> Save Changes. Move to Trash. All spam comments will be placed to the folder “Trash” in the WordPress Comments section except comments with Stop-Words. Stop-Word comments will be always stored in the “Pending” folder. Ban comments without moving to WordPress backend. All spam comments will be deleted permanently without going to the WordPress backend except comments with Stop-Words. Stop-Word comments will be always stored in the “Pending” folder. What comments were blocked and banned can be seen in the Anti-Spam Log here: https://cleantalk.org/my/show_requests?int=week To manage the actions with spam comments, go to the Control Panel, select the website you want to change the actions for and go to “Settings” under the name of the website. Please, read more here: https://cleantalk.org/help/spam-comment-management

If you think the service has missed a spam bot or improperly filtered visitor to the website, you may notify us via the Anti-spam control panel. To do this, Log in to Control panel https://cleantalk.org/my. Click the line “Log” under the name of your website. When you mark a record as “SPAM”, its e-mail and IP-address will be added to your personal blacklist for your website. When you mark a record as “Not SPAM”, its e-mail and IP-address will be added to your personal white list for your website. Please, read more here https://cleantalk.org/faq#feedback_spam

We develop plugin to do it as optimized as possible, CleanTalk doesn’t downgrade response time in backend or frontend. The plugin proccess only POST requests to WordPress core, it tackes less than 1 second to return results.

Yes, it is. Please read this article,https://cleantalk.org/help/CleanTalk-GDPR-Compliance

If your website has forms that send data to external sources, you can enable option to “Protect external forms”. In this case, if plugin determinates that the current message is spam, your form action will be temporary replaced to your current hostname to prevent sending false data to an external source.