I’m a blogger like many of you. If you have been blogging for some time you know what a headache spammers and bots can cause.
You wake up one day and have a ton of comments, before you pat yourself of the back for having posted something so awesome, realize these are most likely spam comments created by bots. Sometimes these robotic posters can crash your site, or cause your provider to disable your blog.
Google has prepared a list of things you can do to limit spam to keep your site functioning and current with new anti-spam strategies. I have employed most of these on my own blogs, especially the captcha. I recommend using the Captcha code that Google provides as I find it the most effective and easy to implement, oh and it’s free too. On some blogs I have turned commenting off completely as they seemed to be targets and the actual comments were few. Askismet is am automated tool I have used for many years and I find it to be effective on WordPress blogs. Moderators are also a great way to balance out the growing work load of keeping up with spammers. The best practice is to keep your blog updated, and be proactive with these simple defense steps.
Google doesn’t make mention of WordFence, but I also highly recommend this security service for WordPress blogs, it offers a basic free tool that is excellent. The first time I ran WordFence I was blown away at how many real-time threats were being made on my little blog at any give time. WordFence can give you some peace of mind that your blog is safe.
Read on for specific tips direct from Google.
Here’s what Google has to say…. (Source: Google Webmaster Central Blog, Jan 27, 2017)
How to protect your site from user generated spam, robotic spam commenting
As a website owner, you might have come across some auto-generated content in comments sections or forum threads. When such content is created on your pages, not only does it disrupt those visiting your site, but it also shows some content that you may not want to be associated with your site to Google and other search engines.
Comments and forum threads can be a really good source of information and an efficient way of engaging a site’s users in discussions. This valuable content should not be buried by auto-generated keywords and links placed there by spammers.
There are many ways of securing your site’s forums and comment threads and making them unattractive to spammers:
•Keep your forum software updated and patched. Take the time to keep your software up-to-date and pay special attention to important security updates. Spammers take advantage of security issues in older versions of blogs, bulletin boards, and other content management systems.
•Add a CAPTCHA. CAPTCHAs require users to confirm that they are not robots in order to prove they’re a human being and not an automated script. One way to do this is to use a service like reCAPTCHA, Securimage and Jcaptcha .
•Block suspicious behavior. Many forums allow you to set time limits between posts, and you can often find plugins to look for excessive traffic from individual IP addresses or proxies and other activity more common to bots than human beings. For example, phpBB, Simple Machines, myBB, and many other forum platforms enable such configurations.
•Check your forum’s top posters on a daily basis. If a user joined recently and has an excessive amount of posts, then you probably should review their profile and make sure that their posts and threads are not spammy.
•Consider disabling some types of comments. For example, It’s a good practice to close some very old forum threads that are unlikely to get legitimate replies.
If you plan on not monitoring your forum going forward and users are no longer interacting with it, turning off posting completely may prevent spammers from abusing it.
•Make good use of moderation capabilities. Consider enabling features in moderation that require users to have a certain reputation before links can be posted or where comments with links require moderation.
If possible, change your settings so that you disallow anonymous posting and make posts from new users require approval before they’re publicly visible.
Moderators, together with your friends/colleagues and some other trusted users can help you review and approve posts while spreading the workload. Keep an eye on your forum’s new users by looking on their posts and activities on your forum.
•Consider blacklisting obviously spammy terms. Block obviously inappropriate comments with a blacklist of spammy terms (e.g. Illegal streaming or pharma related terms) . Add inappropriate and off-topic terms that are only used by spammers, learn from the spam posts that you often see on your forum or other forums. Built-in features or plugins can delete or mark comments as spam for you.
•Use the "nofollow" attribute for links in the comment field. This will deter spammers from targeting your site. By default, many blogging sites (such as Blogger) automatically add this attribute to any posted comments.
•Use automated systems to defend your site. Comprehensive systems like Akismet, which has plugins for many blogs and forum systems are easy to install and do most of the work for you.
(Source: Google Webmaster Central Blog, Jan 27, 2017)