=== Spam Free WordPress === Contributors: toddlahman Donate link: https://www.paypal.com/cgi-bin/webscr?cmd=_s-xclick&hosted_button_id=SFVH6PCCC6TLG Tags: spam, antispam, anti-spam, comments, comment, comment spam, rbl, remote proxy, blacklist, blocklist, spam free wordpress, Akismet, WP-SpamFree, Mollom, AVH First Defense, CAPTCHA, Defensio, block spam, spam free, Growmap, spambot, bot, NoSpamNX, Spammer Blocker, recaptcha, Bad Behavior, Antispam Bee, Block Spam By Math Reloaded, block spam, Sabre, ajax, W3 Total Cache, WP Super Cache, pingbacks, trackbacks, security, SI CAPTCHA Anti-Spam, comment love, comment luv, commentlove, commentluv Tested up to: 3.9.2 Stable tag: 2.2.4 Requires at least: 3.5 Todd Lahman's comment spam blocking plugin that blocks automated spam with zero false positives. == Description == = Special Offer for WordPress.org Members Only = Upgrade to [Simple Comments](https://www.toddlahman.com/shop/simple-comments/). 10% Off with Coupon Code WPSFW. = Get Much More Powerful Form Protection from Simple Comments = Spam Free Wordpress is a weak free spam protection plugin. Upgrade to Simple Comments for extremely powerful spambot and hackbot protection. = Simple Comments Provides 99.9% - 100% Spambot and Hackbot Protection for the Following Forms = * WordPress Comment form (Spambot protection) * Gravity Forms (Spambot protection) * Contact Form 7 (Spambot protection) * WordPress login form (Hackbot protection) * WordPress user registration form (Hackbot protection) * WooCommerce Product Review form (Spambot protection) * WooCommerce Product Enquiry Form (Spambot protection) * WooCommerce 2.1 Login Form (Hackbot protection is only available from Simple Comments) * WooCommerce 2.1 Registration Form (Spambot protection is only available from Simple Comments) * AffiliateWP (Spambot and Hackbot protection) = Simple Comments Security Features = * SEO Hacking Protection * Redirection Hacking Protection * DDOS Protection * XSS Protection * CSRF Protection * Brute Force Attack Protection * XML RPC Service Attack Protection [Learn More About Simple Comments](https://www.toddlahman.com/shop/simple-comments/), and read the customer reviews. = About the Author = [Todd Lahman](https://www.toddlahman.com/hire-todd-lahman/) is a WordPress and WooCommerce Developer. = Languages Supported = * English * German - (de_DE) * Italian (it_IT) * French - fr_FR) * Hebrew - (he_IL) * Japanese - (ja) * Chinese - (zh_CN) * Hong Kong - (zh_HK) * Taiwan - (zh_TW) * Swedish - Svenska (sv_SE) * Norwegian - (norsk) == Installation == 1. Plugins >> Add new 2. Type in Spam Free Wordpress then click Search Plugins 3. Install Upgrade to [Simple Comments](https://www.toddlahman.com/shop/simple-comments/). 10% Off with Coupon Code WPSFW. = Troubleshooting = [Simple Comments](https://www.toddlahman.com/shop/simple-comments/) can resolve many issues that Spam Free Wordpress cannot. Simple Comments also has commercial grade spambot and hackbot protection. Experimenting with free plugins can be time consuming, but Simple Comments is available when you realize you need powerful spam protection. There is no support for this free plugin, but there is support for [Simple Comments](https://www.toddlahman.com/shop/simple-comments/). == Frequently Asked Questions == There is no support for this free plugin, but there is support for [Simple Comments](https://www.toddlahman.com/shop/simple-comments/). Upgrade to [Simple Comments](https://www.toddlahman.com/shop/simple-comments/). 10% Off with Coupon Code WPSFW. == Screenshots == 1. Spam protection is invisible to the reader. Available in [Simple Comments](https://www.toddlahman.com/shop/simple-comments/) only. 2. Spam Free Wordpress in action. == Upgrade Notice == = 2.2.4 = Upgrade immediately to keep your blog comment spam free. == Changelog == = 2.2.4 = * Added esc_attr() to checkboxes for good measure. = 2.2.3 = * Readme update. * CSS changes. = 2.2.2 = * Cleaned up some code. * Added Simple Comments coupon. = 2.2.1 = * Added back image files for proper comment form styling. * Refreshed database settings. Old settings were causing some upgrades to stop working properly. * Cleaned up some code. = 2.2 = * Changed offer hook. = 2.1 = * Removed obsolete checkbox. = 2.0 = * Removed free license offer from the plugin. = 1.9.3 = * Fix: Thesis now uses the WP comment_form function, which caused security checks to duplicate and fail. * Fix: Main options were not saved properly the first time, requiring a second save changes. * Fix: Made comment list and comment form CSS appear more universal on different themes. Still not perfect. * Fix: Corrected CSS conflict with Suffusion theme, which prevented text input on comment form fields in Firefox. * Enhancement: Expanded tech support information. = 1.9.2 = * Missing argument 2 for wpdb::prepare() message fixed. = 1.9.1 = * Swedish translation added. * Norwegian translation added. * Built-in WordPress Nonce security made optional since it breaks on some blog installations. * Updated error messages to match Nonce changes. = 1.9 = * Built a default comment list and comment form theme for the automatically generated comment form option. * Added WordPress AJAX nonce security check. * Disabled WordPress nonce referer check since it was broken on many blogs causing the plugin to fail. * Fixed jQuery incompatibility that would cause the plugin to fail on some blogs that loaded two different versions of jQuery. * Made Old Password Fields invisible for those with broken themes that can't utilize the more secure AJAX authentication. * Made error messages more specific, and informative. * Italian translation added. = 1.8.7 = * jQuery AJAX call now fires only once, instead of several times. = 1.8.6 = * Added option to use old legacy dual password fields, that were used in version 1.5.1, for edge cases with themes or plugins that prevent AJAX from working as expected. = 1.8.5 = * Rewrote jQuery AJAX call to see if it helps edge cases with theme and plugin conflict issues. = 1.8.4 = * Automatic jQuery detection to load proper version did not work with improperly written themes that load versions of jQuery older than 1.7. * Implemented new jQuery compatibility logic to try to work around improperly written themes that load versions of jQuery older than 1.7. * Fixed question mark icon position. * Added option to automatically delete comments marked as spam via cron job. * Added option to automatically delete comments marked as unapproved via cron job. * Added option to automatically delete comments marked as trackbacks or pingbacks via cron job. * Updated theme check to use WordPress 3.4 function if it exists = 1.8.3 = * Fixed: Fatal error line 73. = 1.8 = * Free License Key required for plugin support, and to activate advanced plugin features. * JavaScript now loads in the footer. * Removed ping closed notice. * Removed remote blocklist option. * Removed share link option that was used to promote plugin. * Removed password form options since they are no longer needed. * Upgraded all database options. * Settings page rewritten completely to use the Settings API. * Simplified the settings page. * All spam security now works in the background. * CSS + jQuery Tooltips added to free the settings page from clutter. * Settings page is now CSS responsive. = 1.7.8.6 = * Option to display message, or an ad, above comment text area now displays even if Automatically Generate Comment Form is set to Off. * Check for, and enforce, a minimum version of jQuery * Removed option to use old jQuery scripts from plugin and database = 1.7.8.5 = * HTML5 "required" form field web browser validation check for name and email only active if "Comment author must fill out name and e-mail" is selected on the Discussion screen. = 1.7.8.3 = * Fixed very old versions of JetPack causing a fatal error when Spam Free Wordpress activated, or vice versa. * Added HTML5 "required" form field web browser validation check for name, email, and comment textarea. = 1.7.8.2 = * HTML5 removed from automatically generated comment form. Some current web browsers like Chrome 21.0.1180.75 m mangled the form. Will add later. = 1.7.8.1 = * Fixed comment form not being generated automatically for every theme. * Added HTML5 types for email and url form fields to allow modern web browsers to do RFC-compliant form field validation in the browser when the form is submitted. These new form field types will also cause the iPhone to alter the on-screen keyboard to match the form field. * Added HTML5 required form field web browser check for email and comment textarea. = 1.7.8 = * Set Use Old jQuery Scripts as the default setting to assist poorly written themes that load old versions of jQuery * Fix - Created legacy reference to old function that was removed with no reference in 1.7.7 * wp_enqueue_script URL for jQuery scripts with SFW version number rather than filetime, since W3 Total Cache will otherwise break the URL - Thanks Steve = 1.7.7 = * Automatically loads jQuery scripts compatible with WordPress 3.3 or less that loads a version of jQuery before 1.7. * Added option to load older jQuery scripts when WordPress is 3.3 or greater, but poorly written theme loads a version of jQuery older than 1.7. = 1.7.6 = * Added the option to secure the comment form with an invisible password, a clickable password field, or a click password button. = 1.7.5 = * Fixed automatic comment form generation not turning off due to code error * Added full Thematic comment form support * Added full Genesis comment form support * Added full PageLines comment form support * Added full Graphene comment form support * Added full Atahualpa comment form support * Added full Suffusion comment form support * Added full Picture Perfect comment form support * Thesis only allows password and no tags message on comment form * Replaced German translation - Thanks Marco * Turn mouse cursor into a pointer when over password field - Thanks Joe = 1.7.4 = * Removed password button * Password field automatically generates password when clicked * Added notice for non-JavaScript readers to turn it on to leave a comment * Added readonly attribute to password field - Thanks Thomas = 1.7.3 = * Automatically disable JetPack Comments module since it takes over the comment form, and won't play nice with other plugins * Automatically cleanup Post Meta Custom Fields since transients are now used * German translation updated - Thanks Thomas * Earlier versions have been removed = 1.7.2 = * Corrected jQuery file loading twice = 1.7.1 = * Automatic cache flush of W3TC and WP Super Cache when settings updated and on install * Password fields replaced with a one-click AJAX button and password field * Comment form is now automatically generated * Same hooks available to other plugins and themes as are in the comment_form function * Added autocomplete comment form for Chrome 15 and above * Passwords are now stored as transients to scale to extremely high traffic blogs * AJAX now used to obtain client IP address to bypass cached pages * Added backlink to rejected comment error page * Made rejected comment error message more friendly * Added option to display message, or an ad, above comment text area * Nonce field added to comment form * Language translations added * Added German translation * Added French translation * Added Hebrew translation * Added Japanese translation * Added Chinese translation * Added Hong Kong translation * Added Taiwan translation = 1.6.7 = * Added option to open or close pingbacks * Pingbacks are closed automatically when plugin installed = 1.6.6 = * Updated install routine to preserve existing settings = 1.6.5 = * Pingbacks now closed automatically by default * Translation support coming soon ... = 1.6.4 = * More secure SQL query * Minor admin page change * WordPress version 3.1 or above now required = 1.6.3 = * add_option function caused activation error * had to use update_option to fix = 1.6.2 = * Arrrg. Forgot to bump the version. = 1.6.1 = * Upgrade procedure didn't work as expected first time = 1.6 = * Added disable pingback/trackback * Added disable user registration * Added settings link to plugin row menu * Added remove url form field * Added remove comment author clickable link * Admin page has a new look * Fixed donation link * Added uninstall to cleanup database on deletion * Made invalid or empty password error more clear * Added automatic theme support for popular themes * Minor code changes = 1.5.1 = * Fix for number_format error * Ability to turn blocklists on or off * Easier Admin page * Backend improvements = 1.5.0 = * Number localization fix. = 1.4.9 = * Added global remote blocklist after code rewrite * Added more plugin security features * Added plugin to close pingbacks and trackbacks * Cleaned up code and admin page a bit = 1.4.8 = * Initial release. In development since September 2007. * Global remote blocklist left out pending code rewrite.