跳至主要內容
  • 關於 WordPress
    • 關於 WordPress
    • WordPress.org 台灣繁體中文
    • 線上說明
    • 技術支援
    • 意見反應
  • 登入
  • 註冊
WordPress.org
WordPress.org

Taiwan 正體中文

  • 佈景主題目錄
  • 外掛目錄
  • 最新消息
  • 技術支援
  • 關於我們
  • 團隊
  • 取得 WordPress
取得 WordPress

外掛目錄

  • 我的最愛
  • Beta 版測試
  • 開發者資訊
下載

Login No Captcha reCAPTCHA

由 Robert Peake and Contributors 開發
  • 詳細資料
  • 使用者評論
  • 安裝方式
  • 技術支援
  • 開發資訊

外掛說明

Adds a Google No Captcha ReCaptcha checkbox to your WordPress and Woocommerce login, forgot password, and user registration pages. Denies access to automated scripts while making it easy on humans to log in by checking a box. As Google says, it is “Tough on bots, easy on humans.”

螢幕擷圖

  • Configuration options screen
  • Login screen once configured

安裝方式

Install as normal for WordPress plugins.

常見問題集

Why should I install this plugin?

Many Worpdress sites are bombarded by automated scripts trying to log in to the admin over and over.

The No Captcha is a very simple, Google-supported test to quickly deny access to automated scripts. It is great by itself to instantly make your WordPress site more secure, or can be used with other plugins (like Google Authenticator, Limit Login Attempts, etc.) as part of a defense-in-depth strategy.

There are a lot of other plugins for this, why should I install this one?

I’ve gone to great lengths to try to make sure this plugin is easy to use and install, that it is compatible with different WordPress configurations, supports multiple languages, and that you won’t accidentally lock yourself out of the admin by using it. I use it myself on my own sites as well. So far, it just works.

Does this plugin support [insert name] custom login page plugin?

Probably not. Many custom login form plugins do not call the standard login_form action hook from their login forms, making it impossible to correctly render the captcha after the password prompt. For this reason, this plugin only supports the default wp-login.php and WooCommerce forms. Many such plugins do offer captcha fields (sometimes as a paid upgrade). This plugin tries to do just a few things well.

Does this plugin add a CAPTCHA to comment forms?

No. This plugin is designed to thwart automated hacking attempts, not prevent comment spam. Most good comment plugins have their own spam prevention methods. This plugin tries to do just a few things well.

Does this plugin add a CAPTCHA to custom forms?

No. This plugin is designed to thwart automated hacking attempts, not prevent spam from custom forms. Most good custom form plugins have their own spam prevention methods. Many of them support a CAPTCHA field already. This plugin tries to do just a few things well.

Can I help?

Yes, please. Submit pull requests on github.

I am having trouble with the reCAPTCHA in Internet Explorer

Please see this page for help from Google.

I still see lots of brute force attacks against /wp-login.php in my log files

The reCAPTCHA plugin will not prevent the attempt of brute force attacks, rather it will simply ensure that they do not succeed. That is, scripts may still attempt direct POST attacks against /wp-login.php, but without the correct reCAPTCHA data, they will not go through (even if they have guessed the login and password correctly). To prevent repeat attempts against /wp-login.php, consider using a plugin that limits login attempts in conjunction with this one. Other approaches, such as a web application firewall should also form a part of your complete defense-in-depth strategy.

Where can I learn more about Google reCAPTCHA?

https://www.google.com/recaptcha/intro/index.html

What are your boring legal disclaimers?

This plugin is not affiliated with or endorsed by Google in any way. Google is a registered trademark of Google, Inc. By using reCAPTCHA you agree the terms of service set out by Google. The author provides no warranty as to the suitability to any purpose of this software. You agree to use it entirely at your own risk.

使用者評論

Needs wildcard support

Jeff Starr 2022 年 5 月 24 日
Great plugin but really needs wildcard support for "Whitelist IP" setting. Many ISPs change IP addresses constantly, so it's a pain to have to always go in and manually add another IP address to the list. I posted a support topic asking for wildcard support about 10 months ago, but zero replies from the plugin developer. Wildcard support would change my rating to 5 stars easy. Otherwise I'll eventually fork this plugin and add the wildcard myself (it's trivial to do). Thanks to the developers for this great plugin.

Simple, great user interface!

shirtguy72 2022 年 5 月 7 日
Nice Plugin!

It works properly

Dominik Kozmáli 2022 年 2 月 17 日
Nothing to complain about, everything is working properly.

Great Plugin

hpmg 2022 年 2 月 4 日
Great and simple plugin. I do hope that reCAPTCHA V3 will be supported in the future.

Simple and does the job well

Ramzii 2022 年 1 月 31 日
Thank you for developing this!

Works great !

yatgirl 2022 年 1 月 25 日
I was concerned at the lack of responses from the plugin author in the support forum, but since the recaptcha plugin I was using didnt include woocommerce, I decided to try this plugin anyway. It works perfectly, I no longer get tons of bogus account signups in woocommerce.
閱讀全部 55 則使用者評論

參與者及開發者

以下人員參與了開源軟體〈Login No Captcha reCAPTCHA〉的開發相關工作。

參與者
  • Robert Peake

Login No Captcha reCAPTCHA 外掛目前已有 9 個本地化語言版本。 感謝全部譯者為這個外掛做出的貢獻。

將〈Login No Captcha reCAPTCHA〉外掛本地化為台灣繁體中文版

對開發相關資訊感興趣?

任何人均可瀏覽程式碼、查看 SVN 存放庫,或透過 RSS 訂閱開發記錄。

變更記錄

1.6.11

  • Backwards compatbility fix for PHP <= 5.5 empty() quirk/bug: https://www.php.net/manual/en/function.empty.php

1.6.10

  • Resolve issue whereby captcha could be bypassed for new user registrations introduced in 1.6.9
  • Add option to disable default CSS entirely

1.6.9

  • Resolves CSS dependency issue causing conflicts on non-login pages

1.6.8

  • Prevent information disclosure by only returning error about blank captcha, not login status

1.6.7

  • Revert CSS styling changes after multiple reports of problems
  • Add German language support

1.6.6

  • CSS styling improvement

1.6.5

  • Tested with 5.3

1.6.4

  • Tested with 5.2
  • Using callback to disable submit buttons

1.6.3

  • Resolve issue with captcha not displaying on embedded login form on WooCommerce checkout page

1.6.2

  • Resolve fatal error with old versions of PHP (reported on 5.4.45)

1.6.1

  • Disable submit buttons via javascript on Woo forms
  • Improve error messaging

1.6

  • Added IP whitelist functionality (thanks @farley1122)
  • More comprehensive protection of signup endpoints, including wp-signup.php and my-account page

1.5

  • Resolve issue introduced in 1.4x whereby captcha was being be bypassed
  • ALL USERS STRONGLY ENCOURAGED TO UPDATE FOR SECURITY REASONS AND NOT USE 1.4x

1.4.1

  • Align language text domain with plugin tag to allow translation contributions

1.4

  • Added support for registration forms (thanks to d2roth)
  • Align filter/hook calls with codex
  • Increase priority (earlier execution) of login checking (prevents unnecessary alerts from e.g. WordFence)

1.3.3

  • Fixed bug with fallback to cURL in cases where TLS is misconfigured

1.3.2

  • Compatibility fix for use of empty() language construct in php 5.x

1.3.1

  • Added experimental support for v3 (hidden for now)

1.3

  • Added reCaptcha to lost password form
  • Added Russian translation
  • Tested with 5.0

1.2.5

  • Revert lost password form change as it was frontend-only

1.2.4

  • Add reCaptcha to lost password form

1.2.3

  • Improved Section 508 compliance
  • Do not check for noCaptcha values when using a non-WordPress authentication method other than WooCommerce
  • Add standard WordPress shake effect to invalid login response

1.2.2

  • Do not check for noCaptcha values when using a non-WordPress authentication method
  • Fix bug with submit button greyed out on settings page

1.2.1

  • Implement noCaptcha for WooCommerce customer login form

1.2

  • Fixed an important security issue (thanks to jezevec10 for reporting) to harden the reCaptcha-enabled login page against clever bots

1.1.11

  • Added French translation (thanks to fdinh)

1.1.10

  • Minor bugfix for error reporting

1.1.7

  • Bug fix for login form display in admin, testing on 4.5

1.1.6

  • Disable login with js until NoCaptcha returns

1.1.5

  • Tested compatible with 4.4x

1.1.4

  • Better display of captcha when javascript disabled (thanks to webmasteral)

1.1.3

  • Improved handling of certain Google responses

1.1.2

  • Improved just-in-time script registration (only for admin/login)

1.1.1

  • Remove warning about enqueueing css/js too early

1.1

  • Major security improvement: now supporting reCaptcha checking with javascript disabled (thanks to mfjtf)

1.0.3

  • Resolve issue with WordPress hosted on an inaccessible domain (e.g. localhost)

1.0.2

  • Resolve bug with wp_remote_post() payload

1.0.1

  • Resolve linking issue due to repository maintainers renaming the plugin

1.0.0

  • Initial release

中繼資料

  • 最新版本: 1.6.11
  • 最後更新: 12 個月前
  • 啟用安裝數: 90,000+
  • WordPress 版本需求: 4.6 或更新版本
  • 已測試相容的 WordPress 版本: 5.8.4
  • 語言:

    Chinese (China)、Danish、Dutch、Dutch (Belgium)、English (US)、German、Spanish (Ecuador)、Spanish (Spain)、Spanish (Venezuela)、及 Swedish.

    將這個外掛本地化為你的母語版本

  • 標籤:
    googleloginnocaptcharecaptchasecurity
  • 進階檢視

評分

檢視全部
  • 5 星 47
  • 4 星 2
  • 3 星 2
  • 2 星 2
  • 1 星 3
登入以提交評論

參與者

  • Robert Peake

技術支援

最近 2 個月解決的問題:

總計 1 個問題,已解決 1 個

檢視技術支援論壇

  • 關於我們
  • 最新消息
  • 主機託管
  • 贊助基金會
  • 技術支援
  • 開發者資源
  • 共同參與
  • Learn
  • 展示網站
  • 外掛目錄
  • 佈景主題目錄
  • 區塊版面配置目錄
  • WordCamp
  • WordPress.TV
  • BuddyPress
  • bbPress
  • WordPress.com
  • Matt
  • 隱私權
  • Public Code
WordPress.org
WordPress.org

Taiwan 正體中文

  • 造訪我們的 Facebook 粉絲專頁
  • 造訪我們的 Twitter 帳號
程式碼,如詩