Welcome to the Question2Answer Q&A. There's also a demo if you just want to try it out.
+6 votes
in Q2A Core by
I have reCaptcha enabled on my site as well as the user needing to confirm their email to post.  However, I'm still seeing "spam" emails signing up and some of the emails are even confirmed.  I checked these "spam" emails and they are all fake so I don't know how they are getting listed as "confirmed" in Q2A.

These "spam" bots still seem to be finding a way to get around the reCaptcha and also marking their accounts as "confirmed" by using a fake/bad email address.

Is anyone else having this issue?

Thank you!
I've been experiencing a similar problem and I've posted a related question here: http://www.question2answer.org/qa/36954/there-prevent-account-certain-values-block-human-spammers
Your spammers aren't using the Full Name "info@wolframalpha" are they? That's what my spammers are all writing in the Full Name box and using different emails and IPs each time they register. They also fill in other BS answers to fields like Company and Job Title.
We're having the same problem even with ReCaptcha enabled. I suspect we'll need to come up with a new module for some more advanced anti-spam protection.
I still have this issue.  There are no spam questions being posted but I have over 5 pages of spam registered users that still get passed the ReCaptcha or maybe there is an exploit in Q2A that lets spam bots get around this easily.

Are there any updates on Q2A to make it more secure and fix this exploit?

Please log in or register to answer this question.