Forum Replies Created
-
Posts
-
Please let me know if the following response on your other topic helps clarify how we’re currently approaching the CAPTCHA feature:
If this approach doesn’t work for your setup, let us know and we’ll make arrangements so you can switch to an alternative plugin.
Our plugin only outputs the CAPTCHA-related JavaScript code on the front-end of the site. It uses the
wp_enqueue_scriptshook, which is only executed on the front-end.So, it shouldn’t affect the standard WordPress back-end login page. However, if you’re using a plugin that adds a custom front-end login form, there could be a conflict.
We are currently working on adding new CAPTCHA options to the plugin, which will allow us to phase out the older v2 CAPTCHA.
A new CAPTCHA option should be available within the next few weeks. In the meantime, we recommend disabling v2 CAPTCHA, as it’s causing conflicts on your site. Once the new option is released, you can switch to that.
Let us know if that works for you.
If you’re experiencing attacks like the one you described, the most effective solution is to implement a server-level firewall. CAPTCHA won’t prevent the performance impact, as the page still needs to load before the CAPTCHA is triggered—meaning bot traffic can still strain your server. If you inform your hosting provider about the specific bot attacks, they can configure a firewall at the server level to block the traffic before it reaches your site, eliminating the load and preventing performance issues.
If you are using the PHP streaming option, then you need to try the various methods offered in the settings and see which one works for your server environment. If one of those methods work on your site, then the recommendation is to use that one. The following explanation should be helpful.
When using PHP streaming/dispatching for downloads, there is no universal method that works seamlessly across all server environments. The ability for PHP to handle file streaming depends on the server’s configuration, including factors like PHP execution mode, timeout settings, and security restrictions. If PHP streaming isn’t working on your setup, the best approach is to contact your hosting provider and request adjustments to the server environment to allow PHP-based file streaming to function correctly.
Hi, Currently, using CAPTCHA is the most effective bot protection method available in the plugin.
If you want to further restrict downloads to human users and block or ban abusive accounts, the most reliable approach is to combine CAPTCHA with a membership system and use the Enhanced File Protection Feature.
Restricting Download Access to Members Using WP eMember Plugin
Restricting Download Access to Members Using Simple Membership Plugin
Relying on IP-based blocking is not ideal in this context, as it can be easily bypassed by human users.
By default WordPress limits which file types you can upload. The following addon can be used to allow other files types to be uploaded to your site:
The following plugin is know to have conflicts with Our Simple Download Monitor:
In the “Downloads” menu, where all the downloads are listed, you’ll find a column labeled “ID.” This column displays the unique ID of each download item.
Additionally, when you’re in the “Edit” view of a download, scroll to the section labeled “Shortcodes.” From there, you can copy and paste the exact shortcode, which includes the correct ID for the download.
Hi, It looks like you inserted the squeeze form shortcode inside a download item. Please avoid doing that.
Instead, follow these steps:
1) Edit a post, page, or text widget.
2) Insert the squeeze form shortcode in the desired location:
[sdm-squeeze-form id="210" fancy="0" button_text="Download Now"]Simply place the shortcode wherever you want the squeeze form to appear.
Hi, The error you’re encountering typically indicates that the provided API key was not accepted by Amazon. Please ensure that the ‘Public Key’ and ‘Secret Key’ are correctly placed in their respective fields, as they can sometimes be reversed during the copy and paste process.
Additionally, verify that the key was copied in its entirety, as parts may have been omitted during the copy and paste process.
The region will be detected automatically, so there is no need to enter it manually.
Hi, It uses the reCAPTCHA V2 “I am not a robot” checkbox option.
The captcha can break if there is a plugin conflict on the site also. So it is good to test the following:
Test for Plugin and Theme Conflict Before Posting an Issue or a Bug
