Joomla! Extensions Directory



Site Security

This plugin was made to help webmasters block various types of robots (mail harvesters, comment spammers, dictionnary attackers...) before they even have a chance to browse your site

  • Get this

It works by checking the user IP against a list of well known robots maintained at

In order to use it, you will need and API Key.
You can obtain one for free by registering at Project HoneyPot


* Register and get a Project HoneyPot API Key
* Enter the API key in the API Key field
* Make sure the plugin is loaded first (position 0)
* Activate the plugin.


Posted on 02 November 2013

Works, and did not break any of the many components/plugins/modules currently running on the old 1.5 site! Thank you for making this available to the community.

A Pro version could be an option. With Log file reading from back-end / email notification upon detection and confirmation Api key works.

Good luck


Posted on 31 August 2013

Installed this plugin to tighten security.

checked the httpbl.txt file, and it seems to do a job well done!

As a suggestion:

It would be nice to have some sort of visual feedback once you pasted the API-key. Confirmation of some sorts that plugin is correctly installed, valid API key and up and running.

And maybe even a button in the plugin that opens the .txt file, without me having to ftp to the file

*just a suggestion

Very useful plugin

Posted on 31 January 2013

This is a must have for any site, if you want to improve protection against malicious robots.

Works straight out of the box, both on Joomla 1.5 and 2.5 installations.

A nice to have would be to have access to the stats from the admin interface, and maybe be able to reset them.

Thanks for making this available to the community :)

Nice Extension

Posted on 24 November 2012

Good extension will help fight the spam my sites are getting hammered with.

Very useful extension

Posted on 22 November 2012

Installed the plugin on a fresh site a week ago. I took a peek at the log file today and noticed 100+ attempts, all blocked.

At first however I had my doubts that the extension was really doing something because one bot succeeded in even bypassing the extra captcha protection in all the forms. But the IP in question was not listed by projecthoneypot (nor stopforumspam), so the plugin simply could not function.

Thanks a lot for this extension, I recommend it.

A few days ago I installed this plugin on a site I manage. After checking the log file that it produces, I am gratified with the results. Now the size of and the time spent maintaining the site's IP Deny list have been significantly reduced. Over the course of four days about 100 unique IP addresses were blocked in 450 attempts to gain access.

A human can be blocked because they are using an IP address flagged in the Project Honey Pot database as malicious. In that case they may indicate that they are not a bot and are allowed to navigate the site. They do, though, see a banner notifying them that their IP address is tainted.

There are a few things about this plugin that should be improved. Notably, as of this writing, there is no version available for Joomla 2.5. I have decided that I will postpone the migration of some of my Websites from Joomla 1.5 to Joomla 2.5 rather than leave this extension behind.

Owner's reply: Hi, Thanks for your kind review.
Just so you know i do receive some suggestions for this plugin future and taking those into account i've planned several things for the development of the 2.5 compatible version

on admin side :
- choosing log file location and name
- Possibility for the admin to try a test query
(this version does not allow you to see that the pluging is working)

on front- end side:
- Possibility for an "innocent" flagged user to close the banner (at the moment it stays on as long as the user's ip has been flagges during the last 7 days)
- overall spell checking (someone reported quite a few misspellings and various typos)

The only thing I can't be sure of is when I'll have time to furthermore develop this extension. It's done as a pro-bono work, that I do on my spare time, ans spare time has been scarce lately :)

Great Plugin

Posted on 02 February 2012

Simple, easy to use and fixes a problem instantly.

After registering on the HoneyPot site click on 'Services' to request your API Key.

Eric B - Thank You!

Fast and effective!

Posted on 22 September 2011

Easy to install, for the API key you need to search the HoneyPot site and voilá! Helped me with a recurring SQL injection problem caused by a bot attack.

No need to speak french BTW :)

Owner's reply: Hi.

I'm glad this plugin saved you some problems and you found it easy to install. And you're probably right I should translate the plugin download page in english, but on the other hand all you raelly need is the download link and it's pretty easy to find on the page, and the plugin itself comes with en_EN and fr_FR translations, so..

Thanks for your kind review though :)

HTTPBL - Project Honeypot Blocklists

Eric Bouquerel - Bol d'Air
Date added:
Nov 19 2014
GPLv2 or later
Free download
Uses updater:
Download DemoNot available SupportNot available Documentation
  • Overall
  • Functionality

  • Ease of use

  • Documentation

  • Support