Registration Validator
Version
1.3.3 (last update on Sep 15, 2010)
Rating
Compatibility
Votes
Favoured
109
License
GPLv2 or later
Non-Commercial
Type
Views
112765
Date Added
4 February 2009
Editor's Note
- This extension requires registration to download.
Captcha is annoying for users, and also has accessibility issues. This plugin prevents unwanted signups without needing captcha or any additional user verification. It reduces rogue signups by a huge amount due to numerous checks made on the IP and email address of the originator.
- Block disposable email addresses (internal list and check against undisposable.net).
- Block domains and/or subdomains.
- Block usernames.
- Block IPs or IP ranges.
- Block bots by checking against BotScout database.
- Perform DNS lookup on email domains.
- Perform Spamhaus lookup on IP addresses (SBL, XBL)
- Reject contact submissions containing URLs.
- Reject contact submissions based on Undisposable, BotScout, StopForumSpam.
- Optionally creates a log of all activity - you can see what it is doing: who was blocked, and who was passed.
If the email address passes the internal check, it is still checked against undisposable.net. Registration is allowed if either undisposable.net is unavailable (which seems to be constantly, at the moment) or the address does not come back as invalid.
If you require Kunena support (blocking spam forum postings), look for Registration Validator 2 (which is commercial - v1 isn't).
1.3.2
- Fixed logging issue (unnecessary logs were being generated).
1.3.1
- Fixed Spamhaus check which could result in false positives depending upon the client IP address.
1.3.0
- Fixed issue with Virtuemart whereby logged in users may be blocked from purchase when asked for billing information.
1.2.9
- Minor bugfix.
1.2.8
- Fixed bug whereby if StopForumSpam Reject if only IP AND email match was enabled, all registrations would be rejected (by default RV is not configured this way).
1.2.7
- Fixed issue whereby an error would occur if an invalid log-file is specified in parameters. Depending upon the PHP error-handling set-up, this could cause fatal error.
1.2.6
- BUGFIX: due to the multi-add update in 1.2.1, the list parameter saving was broken. This is now resolved.
1.2.5
- Fixed DNS lookup bug. The DNS validation would fail domains that accepted mail, but didn't have an A record for the domain. This check has now been changed to an MX lookup for the email domain - so any mail-enabled domain will now be validated.
1.2.4
- Fixed StopForumSpam check - it was only checking email, not IP address.
- Fixed invalid email domain check - this check was not working properly, and all domains were being passed whether valid or not.
1.2.3
- Optimised logging to prevent multiple fopens.
- Added extra timeout check for HTTP requests (the timeout now applied to connection and request).
- Updated Undisposable check as wasn't checking properly for error being returned from request (though this shouldn't have caused any issues, as the second check would have caught the lack of data).
I had some problems with this in the first instance but very supportive and constructive assistance from developer meant we were able to identify problem which was my server firewall blocking outgoing IP's. So support is 100%
The product does EXACTLY what it says on the tin and is being updated all the time.
tip: run the logging file to see the full details and DO sign up to BotScout.com although the local blocking also works really well too.
This product is now a MUST for standard installs.
The product does EXACTLY what it says on the tin and is being updated all the time.
tip: run the logging file to see the full details and DO sign up to BotScout.com although the local blocking also works really well too.
This product is now a MUST for standard installs.
I was using this plug in with no known problems for several months until I updated to a more recent version. All of a sudden, new registrations ground to a halt and customers were complaining. I turned off one of the options that was refusing emails from my own domain, and then today it was refusing an email address from sbcglobal.net and so I disabled it completely. Too many customers are being turned away!
Owner's reply
It is as restrictive as you make it. ALL options can be turned off, and updates often include an additional check to another spambot verification service.
I didn't notice you requesting help in the support forums - that would usually be the first place to start in the event of problems. It would be helpful to me and everyone else if problems were reported so that any issues can be identified and resolved.
Having been plagued by persistent spam registrations for the last couple of months I've tried every single captcha plugin and component available, none of which stopped any of the spam sign ups on my site.
I stumbled across this plugin by accident and a bit half heartedly decided to give it a go. I have to say that it's got to be the easiest system to use and there's absolutely nothing to modify unlike most of the captcha plugins. I've finally gone more than 2 days without any spam registrations which is a big relief!
I stumbled across this plugin by accident and a bit half heartedly decided to give it a go. I have to say that it's got to be the easiest system to use and there's absolutely nothing to modify unlike most of the captcha plugins. I've finally gone more than 2 days without any spam registrations which is a big relief!
Easy to install, works great. I tested with a fake email address and it appeared on the user's list. The developer emailed me to click the "Enabled" column twice so it will list all the unenabled (i.e. unactivated) accounts at the top of the list, and that's a good thing to do every now and then.
Before this, i use AlphaRegistration on my production site. There is no problem from bot attack. Unfortunately, i have to uninstall it because another security reason. Then, I use Joomla default registration form. Tomorrow, there was a registration from this email,antiquariat-plus@mail.ru. I search through Google and found there are several report about this spam bot. Then i found this great plugin, install with easy, register with BotScout.com to get API Key, then publish it. Still now, this plugin save my day and work perfectly! No more worries about spam bot anymore! Must have for every Joomla! site and thank you very much Mr David Barrett (cedit) for great plugin for Joomla Commmunity! TQ! :)
This plug-in works easy. Just go to the plug-in manager and enable it. (eventually
Fill in Plug-in Parameters) I Need the BotScout API-Key (because of more than 20 - BotScout - Checks a day)…
Still waiting for the key however…. But that’s not the fault of the perfect plugin…..
I need to have more patient perhaps…
Perfect Plug-in, You definitely need to reject al those fake users (bot’s).
Fill in Plug-in Parameters) I Need the BotScout API-Key (because of more than 20 - BotScout - Checks a day)…
Still waiting for the key however…. But that’s not the fault of the perfect plugin…..
I need to have more patient perhaps…
Perfect Plug-in, You definitely need to reject al those fake users (bot’s).
Owner's reply
I had problems obtaining a Botscout key also - apparently various tlds are blocked from Botscout (.biz in my case), so I had to use another email address to register. Contacting the site admin resolved it very quickly though.
Easy to install. Nothing to do! I wasn't sure because it was so easy so I tested with BotScout. Works like a charm! Thanks ....
Keeping spammers at bay is a constant battle. This plugin is a great tool in your spam defense. I tested it against 3 known and 2 lesser known disposable email services. 5/5 emails were blocked.
Thanks for making this possible.
This should also be standard in joomla like noaixcl and jlord restricted access.
Works great!
Finally i can block does nasty domains who only try to hack you.
You can even add domains yourself.
Like people who register every day but never activate their account like mail.ru and gawab.com.
Thanks!
This should also be standard in joomla like noaixcl and jlord restricted access.
Works great!
Finally i can block does nasty domains who only try to hack you.
You can even add domains yourself.
Like people who register every day but never activate their account like mail.ru and gawab.com.
Thanks!
Page 3 of 3