WPBeginner - WordPress Tutorials for Beginners

Beginner's Guide for WordPress / Start your WordPress Blog in minutes

How to Prevent Imposter Comments in WordPress

Last updated on by Editorial Staff | Reader DisclosureDisclosure: Our content is reader-supported. This means if you click on some of our links, then we may earn a commission. See how WPBeginner is funded, why it matters, and how you can support us.

Shares 32 Share Facebook Messenger WhatsApp

One of the issues we started noticing on our site was a group of spammers were commenting using our registered user’s username and email. It’s fairly easy to find both specially if a person has exchanged emails with you. This allowed a random user to comment using a registered user’s name. So it might look like that “Syed Balkhi” was commenting, when it was an imposter. In this article, we will show you how to prevent imposters from commenting in WordPress.

Video Tutorial

Subscribe to WPBeginner

If you don’t like the video or need more instructions, then continue reading.

All you have to do is install and activate this plugin called Impostercide. That’s it. Now the plugin is working.

It will prevent all unauthenticated users from “signing” a comment with a registered users email address or username.

For those who don’t know why this is important, here is a small explanation. Normally a new user’s comment awaits moderation vs. registered user’s comments go through without requiring any approval. An spammer can then use the registered user’s username or email address in the comments to get the same gravatar and add a link in your comments. For high traffic sites, the moderator might even miss it by accident because the avatar looks familiar. It is extremely disguising for users of the site as well.

With this plugin, when an imposter tries to do this, they will be shown a screen like this:

“The name provided (XYZ) belongs to a registered user. Please login to make your comment.”

This plugin doesn’t add any bloated code to your site. It is a simple plugin that just works. Get Impostercide plugin for WordPress.

Popular on WPBeginner Right Now!

Disclosure: Our content is reader-supported. This means if you click on some of our links, then we may earn a commission. See how WPBeginner is funded, why it matters, and how you can support us.

The Ultimate WordPress Toolkit

Get FREE access to our toolkit – a collection of WordPress related products and resources that every professional should have!

Download Now

Reader Interactions

5 CommentsLeave a Reply

  2. Good tip however you should always check this box in your Discussion settings as well:

    ‘An administrator must always approve the comment ‘

    P.S How about approving comments you don’t agree with?

    Reply

  4. Many anti-spam plugins will block this type of attack too since the imposters typically use bots to post the comments.

    Reply

Leave A Reply

Thanks for choosing to leave a comment. Please keep in mind that all comments are moderated according to our comment policy, and your email address will NOT be published. Please Do NOT use keywords in the name field. Let's have a personal and meaningful conversation.

Featured in

Copyright © 2009 - 2023 WPBeginner LLC. All Rights Reserved. WPBeginner® is a registered trademark.

Managed by Awesome Motive | WordPress hosting by SiteGround | WordPress Security by Sucuri.

I need help with…

Popular searches:

Starting a
Blog WordPress
SEO WordPress
Performance WordPress
Errors WordPress
Security Building an
Online Store