Nonce, Please! wordpress plugin resources analysis

Download This Plugin
Download Elegant Themes
Name	Nonce, Please!
Version	1.2.0
Author	IKEDA Yuriko
Rating	0
Last updated	2010-05-08 09:34:00
Downloads	5237
Download Plugins Speed Test plugin for Wordpress

Home page

Delta: 0%

Post page

Delta: 0%

Nonce, Please! plugin has no negative impact on PageSpeed score.

Home page PageSpeed score has been degraded by 0%, while Post page PageSpeed score has been degraded by 0%

Nonce, Please! plugin added 9 bytes of resources to the Home page and 66 bytes of resources to the sample Post page.

Nonce, Please! plugin added 0 new host(s) to the Home page and 0 new host(s) to the sample Post page.

Great! Nonce, Please! plugin ads no tables to your Wordpress blog database.

Resources Added (Post page)

Description

Akismet is a great plugin to block spam comments/trackbacks. It detects spams completely. But, Akismet allows to accept unsolicited feedbacks, and to store them in the database. It is weaker act to fight with spams. A better way is to reject them.

Also, the architecture of WordPress is vulnerable for spammer. Because the comment API is fixed URL like: "wp-comments-post.php", "wp-trackback.php, or "http://blog.example.com/archives/99/trackback/". Therefore, spammers can easily post bulk comments/trackbacks to WordPress weblogs.

"Nonce, Please!" add a nonce (random strings) to the comment hidden field and/or the trackback URL. A valid comment and/or trackback should have a nonce string. Bulk feedbacks will not have nonce. This plugins also verifies that a new comment/trackbacks has the valid nonce. If there is no nonce or an invalid one, the feedback is rejected.

Adding and verifying nonce is automatic, users are not do anything!