I have always wondered, how do these spammy user registrations appear in the backend under ‘users’ when there’s no login facility on the front end.
Any help appreciated.
It’s most likely that registration/profile pages are accessible somewhere to people who know the URL syntax, and that leaves a back door for spammer, often they attempt to insert spam links in member profiles.
Some things you can do:
- Turn off registrations - any decent CMS will have a setting for that
- Change the URL’s to member/registration pages to something obscure
- Lock down registration template access to only authorised users
1 Like
Check your Settings on the Dashboard. Under ‘Discussion’ there is an option to check/uncheck “Users must be registered and logged in to comment”. The default comments template has a register form if a user wishes to make a comment on an article. Also in ‘General’ there is an option to check/uncheck " nyone can register". Go through all of the settings and make sure everything is set up the way you want.
1 Like
Excellent advice! Wordpress 101 I guess.
I should have known 
This topic was automatically closed 91 days after the last reply. New replies are no longer allowed.