Thanks to AllGuru.NET. Its WordPress security hardening using .htaccess really helps to reduce lot of spam comments. I added below lines in .htaccess file few weeks back. And my total spam comments were reduced from 10,000++ to 3,000 comments now. If I did not install the scripts, the spam comments will stay at 10K++ level.
# Protect from spam comments
<IfModule mod_rewrite.c>
RewriteEngine On
RewriteCond %{REQUEST_METHOD} POST
RewriteCond %{REQUEST_URI} .wp-comments-post\.php*
RewriteCond %{HTTP_REFERER} !.*DomainName.* [OR]
RewriteCond %{HTTP_USER_AGENT} ^$
RewriteRule (.*) ^http://%{REMOTE_ADDR}/$ [R=301,L]
</IfModule>
Note – replace DomainName to your own domain name without .com or .net. Eg. RewriteCond %{HTTP_REFERER} !.*spblogger.* [OR]
This method will stop some spam comments from autobots. But can’t stop real human’s spam comments. I don’t mind about human’s spam comment because I have extra page view. And I always count on WordPress Akismet plugin to block them.
via: AllGuru.NET
