'.sprintf(__('WP-SpamFree has blocked %2$s spam comments.'), 'http://www.hybrid6.com/webgeek/plugins/wp-spamfree', number_format($spamfree_count) ).'

100 ) { ?> Happy with WP-SpamFree?
Let others know by giving it a good rating on WordPress.org!


Documentation: Plugin Homepage
Tech Support: WP-SpamFree Support
Follow on Twitter: @WPSpamFree
Let Others Know: Leave Comments

General Options

Contact Form Options

Installation Instructions

1. After downloading, unzip file and upload the enclosed 'wp-spamfree' directory to your WordPress plugins directory: '/wp-content/plugins/'.
    
2. As always, activate the plugin on your WordPress plugins page.
    
3. Check to make sure the plugin is installed properly. Many support requests for this plugin originate from improper installation and can be easily prevented. To check proper installation status, go to the WP-SpamFree page in your Admin. It's a submenu link on the Plugins page. Go the the 'Installation Status' area near the top and it will tell you if the plugin is installed correctly. If it tells you that the plugin is not installed correctly, please double-check what directory you have installed WP-SpamFree in, delete any WP-SpamFree files you have uploaded to your server, re-read the Installation Instructions, and start the Installation process over from step 1. If it is installed correctly, then move on to the next step.
    
   Currently your plugin is: ".$wp_installation_status_msg_main.""; ?>
    
4. Select desired configuration options. Due to popular request, I've added the option to block trackbacks and pingbacks if the user feels they are excessive. I'd recommend not doing this, but the choice is yours.
    
5. If you are using front-end anti-spam plugins (CAPTCHA's, challenge questions, etc), be sure they are disabled since there's no longer a need for them, and these could likely conflict. (Back-end anti-spam plugins like Akismet are fine, although unnecessary.)

You're done! Sit back and see what it feels like to blog without comment spam!

Displaying Spam Stats on Your Blog

Want to show off your spam stats on your blog and tell others about WP-SpamFree? Simply add the following code to your WordPress theme where you'd like the stats displayed:
 
<?php if ( function_exists(spamfree_counter) ) { spamfree_counter(1); } ?>
 
where '1' is the style. Replace the '1' with a number from 1-9 that corresponds to one of the following sample styles you'd like to use. To simply display text stats on your site (no graphic), replace the '1' with '0'.

To add stats to individual posts, you'll need to install the Exec-PHP plugin.

Small Counter

To add smaller counter to your site, add the following code to your WordPress theme where you'd like the stats displayed:
 
<?php if ( function_exists(spamfree_counter_sm) ) { spamfree_counter_sm(1); } ?>
 
where '1' is the style. Replace the '1' with a number from 1-5 that corresponds to one of the following.

Or, you can simply use the widget. It displays stats in the style of small counter #1. Now you can show spam stats on your blog without knowing any code.

Adding a Contact Form to Your Blog

First create a page (not post) where you want to have your contact form. Then, insert the following tag (using the HTML editing tab, NOT the Visual editor) and you're done: <!--spamfree-contact-->
 
There is no need to configure the form. It allows you to simply drop it into the page you want to install it on. However, there are a few basic configuration options. You can choose whether or not to include Phone and Website fields, whether they should be required, add a drop down menu with up to 10 options, set the width and height of the Message box, set the minimum message length, set the form recipient, enter a custom message to be displayed upon successful contact form submission, and choose whether or not to include user technical data in the email.
 
If you want to modify the style of the form using CSS, all the form elements have an ID attribute you can reference in your stylesheet.
 
What the Contact Form feature IS: A simple drop-in contact form that won't get spammed.
What the Contact Form feature is NOT: A configurable and full-featured plugin like some other contact form plugins out there.
Note: Please do not request new features for the contact form, as the main focus of the plugin is spam protection. Thank you.

Configuration Information

Spam Options

M2 - Use two methods to set cookies.
This adds a secondary non-JavaScript method to set cookies in addition to the standard JS method.

Blocked Comment Logging Mode
This is a temporary diagnostic mode that logs blocked comment submissions for 7 days, then turns off automatically. If you want to see what spam has been blocked on your site, this is the option to use. Also, if you experience any technical issues, this will help with diagnosis, as you can email this log file to support if necessary. If you suspect you are having a technical issue, please turn this on right away and start logging data. Then submit a support request, and we'll email you back asking to see the log file so we can help you fix whatever the issue may be. The log is cleared each time this feature is turned on, so make sure you download the file before turning it back on. Also the log is capped at 2MB for security. This feature may use slightly higher server resources, so for best performance, only use when necessary. (Most websites won't notice any difference.)

Log All Comments
Requires that Blocked Comment Logging Mode be engaged. Instead of only logging blocked comments, this will allow the log to capture all comments while logging mode is turned on. This provides more technical data for comment submissions than WordPress provides, and helps us improve the plugin. If you plan on submitting spam samples to us for analysis, it's helpful for you to turn this on, otherwise it's not necessary. If you have any spam comments that you feel WP-SpamFree should have blocked (usually human spam), then please submit a support request. When we email you back we will ask you to forward the data to us by email.

This extra data will be extremely valuable in helping us improve the spam protection capabilites of the plugin.

Enhanced Comment Blacklist
Enhances WordPress's Comment Blacklist - instead of just sending comments to moderation, they will be completely blocked if this is enabled. (Useful if you receive repetitive human spam or harassing comments from a particular commenter.) Also adds one-click blacklisting - a link will now appear in the comment notification emails that you can click to blacklist a commenter's IP. This link appears whether or not the feature is enabled. If you click the link and this feature is diabled, it will add the commenter's IP to the blacklist but blacklisting will operate according to WordPress's default functionality.

The WP-SpamFree blacklist shares the WordPress Comment Blacklist data, but the difference is that now when a comment contains any of these words in its content, name, URL, e-mail, or IP, it will be completely blocked, not just marked as spam. One word or IP per line...add each new blacklist item on a new line. If you're not sure how to use it, start by just adding an IP address, or click on the link in one of the notification emails. It is not case-sensitive and will match included words, so "press" on your blacklist will block "WordPress" in a comment.

Disable trackbacks.
Use if trackback spam is excessive. It is recomended that you don't use this option unless you are experiencing an extreme spam attack.

Disable pingbacks.
Use if pingback spam is excessive. The disadvantage is a reduction of communication between blogs. When blogs ping each other, it's like saying "Hi, I just wrote about you" and disabling these pingbacks eliminates that ability. It is recomended that you don't use this option unless you are experiencing an extreme spam attack.

Allow users behind proxy servers to comment?
Most users should leave this unchecked. Many human spammers hide behind proxies. Leaving this unckecked adds an extra layer of spam protection. In the rare even that a non-spam commenter gets blocked by this, they will be notified what the situation is, and instructed to contact you to ask you to modify this setting.

Hide extra technical data in comment notifications.
The plugin now addes some extra technical data to the comment moderation and notification emails, including the referrer that brought the user to the page where they commented, the referrer that brought them to the WordPress comments processing page (helps with fighting spam), User-Agent, Remote Host, Reverse DNS, Proxy Info, Browser Language, and more. This data is helpful if you ever need to submit a spam sample. If you dislike seeing the extra info, you can use this option to prevent the info from being displayed in the emails. If you don't mind seeing it, please leave it this unchecked, because if you ever need to submit a spam sample, it helps us track spam patterns.

Help promote WP-SpamFree?
This places a small link under the comments and contact form, letting others know what's blocking spam on your blog. This plugin is provided for free, so this is much appreciated. It's a small way you can give back and let others know about WP-SpamFree.

Contact Form Options
These are self-explanatory.

Known Plugin Conflicts

For the most up-to-date info, view the Known Plugin Conflicts list.

Troubleshooting Guide / Support

If you're having trouble getting things to work after installing the plugin, here are a few things to check:

1. Check the FAQ's.
    
2. If you haven't yet, please upgrade to the latest version.
    
3. Check to make sure the plugin is installed properly. Many support requests for this plugin originate from improper installation and can be easily prevented. To check proper installation status, go to the WP-SpamFree page in your Admin. It's a submenu link on the Plugins page. Go the the 'Installation Status' area near the top and it will tell you if the plugin is installed correctly. If it tells you that the plugin is not installed correctly, please double-check what directory you have installed WP-SpamFree in, delete any WP-SpamFree files you have uploaded to your server, re-read the Installation Instructions, and start the Installation process over from step 1.
    
   Currently your plugin is: ".$wp_installation_status_msg_main.""; ?>
    
4. Clear your browser's cache, clear your cookies, and restart your browser. Then reload the page.
    
5. If you are receiving the error message: "Sorry, there was an error. Please enable JavaScript and Cookies in your browser and try again." then you need to make sure JavaScript and cookies are enabled in your browser. (JavaScript is different from Java. Java is not required.) These are enabled by default in web browsers. The status display will let you know if these are turned on or off (as best the page can detect - occasionally the detection does not work.) If this message comes up consistently even after JavaScript and cookies are enabled, then there most likely is an installation problem, plugin conflict, or JavaScript conflict. Read on for possible solutions.
    
6. If you have multiple domains that resolve to the same server, or are parked on the same hosting account, make sure the domain set in the WordPress configuration options matches the domain where you are accessing the blog from. In other words, if you have people going to your blog using http://www.yourdomain.com/ and the WordPress configuration has: http://www.yourdomain2.com/ you will have a problem (not just with this plugin, but with a lot of things.)
    
7. Check your WordPress Version. If you are using a release earlier than 2.3, you may want to upgrade for a whole slew of reasons, including features and security.
    
8. Check the options you have selected to make sure they are not disabling a feature you want to use.
    
9. Make sure that you are not using other front-end anti-spam plugins (CAPTCHA's, challenge questions, etc) since there's no longer a need for them, and these could likely conflict. (Back-end anti-spam plugins like Akismet are fine, although unnecessary.)
    
10. Visit http://www.yourblog.com/wp-content/plugins/wp-spamfree/js/wpsf-js.php (where yourblog.com is your blog url) and check two things.
     
    First, see if the file comes normally or if it comes up blank or with errors. That would indicate a problem. Submit a support request (see last troubleshooting step) and copy and past any error messages on the page into your message.
     
    Second, check for a 403 Forbidden error. That means there is a problem with your file permissions. If the files in the wp-spamfree folder don't have standard permissions (at least 644 or higher) they won't work. This usually only happens by manual modification, but strange things do happen. The AskApache Password Protect Plugin is known to cause this error. Users have reported that using its feature to protect the /wp-content/ directory creates an .htaccess file in that directory that creates improper permissions and conflicts with WP-SpamFree (and most likely other plugins as well). You'll need to disable this feature, or disable the AskApache Password Protect Plugin and delete any .htaccess files it has created in your /wp-content/ directory before using WP-SpamFree.
     
11. Check for conflicts with other JavaScripts installed on your site. This usually occurs with with JavaScripts unrelated to WordPress or plugins. However some themes contain JavaScripts that aren't compatible. (And some don't have the call to the wp_head() function which is also a problem. Read on to see how to test/fix this issue.) If in doubt, try switching themes. If that fixes it, then you know the theme was at fault. If you discover a conflicting theme, please let us know.
     
12. Check for conflicts with other WordPress plugins installed on your blog. Although errors don't occur often, this is one of the most common causes of the errors that do occur. I can't guarantee how well-written other plugins will be. First, see the Known Plugin Conflicts list. If you've disabled any plugins on that list and still have a problem, then proceed.
     
    To start testing for conflicts, temporarily deactivate all other plugins except WP-SpamFree. Then check to see if WP-SpamFree works by itself. (For best results make sure you are logged out and clear your cookies. Alternatively you can use another browser for testing.) If WP-SpamFree allows you to post a comment with no errors, then you know there is a plugin conflict. The next step is to activate each plugin, one at a time, log out, and try to post a comment. Then log in, deactivate that plugin, and repeat with the next plugin. (If possible, use a second browser to make it easier. Then you don't have to keep logging in and out with the first browser.) Be sure to clear cookies between attempts (before loading the page you want to comment on). If you do identify a plugin that conflicts, please let me know so I can work on bridging the compatibility issues.
     
13. Make sure the theme you are using has the call to wp_head() (which most properly coded themes do) usually found in the header.php file. It will be located somewhere before the </head> tag. If not, you can insert it before the </head> tag and save the file. If you've never edited a theme before, proceed at your own risk:
     
    1. In the WordPress admin, go to Themes (Appearance) - Theme Editor
        
    2. Click on Header (or header.php)
        
    3. Locate the line with </head> and insert <?php wp_head(); ?> before it.
        
    4. Click 'Save'
        
14. On the WP-SpamFree Options page in the WordPress Admin, under General Options, check the option "M2 - Use two methods to set cookies." and see if this helps.
     
15. If have checked all of these, and still can't quite get it working, please submit a support request at the WP-SpamFree Support Page.

Let Others Know About WP-SpamFree

How does it feel to blog without being bombarded by automated comment spam? If you're happy with WP-SpamFree, there's a few things you can do to let others know:

• Post a comment.
• Give WP-SpamFree a good rating on WordPress.org.
• Place a graphic link on your site letting others know how they can help end blog spam. ( </BLOGSPAM> )

Download Plugin / Documentation
Latest Version: Download Now
Plugin Homepage / Documentation: WP-SpamFree
Leave Comments: WP-SpamFree Release Announcement Blog Post
WordPress.org Page: WP-SpamFree
Tech Support/Questions: WP-SpamFree Support Page
End Blog Spam: Let Others Know About WP-SpamFree!
Twitter: @WPSpamFree