前言介紹
- 這款 WordPress 外掛「Obfuscate Email」是 2005-04-13 上架。 目前已經下架不再更新,不建議安裝使用。
- 目前有 9000 個安裝啟用數。
- 上一次更新是 2021-04-14,距離現在已有 1481 天。超過一年沒更新,安裝要確認版本是否可用。以及後續維護問題!
- 外掛最低要求 WordPress 4.9 以上版本才可以安裝。
- 有 13 人給過評分。
- 還沒有人在論壇上發問,可能目前使用數不多,還沒有什麼大問題。
外掛協作開發者
外掛標籤
spam | email | security | obfuscate | obfuscation |
內容簡介
此外掛用於防止電子郵件地址被垃圾信件抓取,並保持電子郵件超連結的外觀和功能。這個「難懂化」(Obfuscation) 方法是指運用技巧修改您網站上的電子郵件地址,讓網站爬蟲無法辨認這些地址,但同時電子郵件地址仍應在訪客的角度看起來正常與正確運作。本外掛提供三種電子郵件保護技術,您可以決定哪些技術適用於您的網站。外掛設定頁面允許您選擇使用哪些技術。然而,最好的方法是不要公開揭露電子郵件地址,並提供聯絡表單作為替代的聯絡方式。但如果您想採取最合理的方法使網站難於被爬蟲抓取,本外掛就是為您而來。更多關於技巧的細節,請參閱此外掛文件的「Details」章節。
原文外掛簡介
Obfuscate email addresses to deter email-harvesting spammers, with a focus on retaining the appearance and functionality of email hyperlinks.
“Obfuscation” simply means that techniques are employed to modify email address strings that appear on your site in such a way that bots scraping your site are unable to identify those addresses; however, at the same time those emails addresses should still look and work correctly for visitors, as much as possible.
The plugin allows for use of one or more (or all!) of three techniques for email protection that have proven themselves in the past. While techniques abound for email obfuscation, the three techniques included provide the best balance of email address protection with minimal impact on visitors. You can decide on a technique by technique basis which ones you’d like to employ as some have potential drawbacks. The plugin’s settings page allows you select which techniques to use.
Ultimately, your best bet would be to not publicly expose an email address and to offer a contact form as an alternative means of contact. Or you can just accept that email addresses will get scraped and spammed, and rely on an email service that is good at filtering out spam. But this plugin is here for you if you want to employ the most reasonable means of making email harvesting difficult for your site.
See Filters section for c2c_obfuscate_email_filters for complete list of filters that are processed.
Please read the Details section of this documentation to learn more about the techniques employed.
Details
The email obfuscation techniques included in this plugin were chosen for their effectiveness and general applicability with minimal impact on users. I urge you to read about an experiment performed by Silvan Mühlemann in which he protected email addresses using nine different techniques. He ensured the page containing those email addresses got indexed by Google and then waited 1.5 years. During that time he measured the amount of spam received to each of the email addresses. (Note: this experiment came out a few years after this plugin was originally created, but at this point was conducted over 10 years ago. Its conclusions may not apply as strongly today.)
Three techniques stood out as having received zero spam emails during that time. Two of those three techniques are included in this plugin. The fourth of his techniques is also included even though it did get a very small amount of spam — the technique was still very effective and more importantly does not rely on users to have CSS or JavaScript enabled.
The techniques are as follows. Two are enabled by default. Weigh the requirements against what you’re comfortable requiring of visitors in order for them to see and make use of email addresses you post on your site.
(For all the examples below, assume you have the link [email protected] in your post.)
Using CSS display:none
How does it work? Garbage text, wrapped in span tags, is inserted into any displayed email addresses. Using CSS, the text gets hidden so that visitors see the email addresses as intended. Email scrapers don’t typically utilize a CSS engine to help determine how text would look onscreen.
Uses CSS? Yes, which means if a visitor does not have CSS enabled, the emails will appear with extra text in them.
Uses JavasScript? No.
Can visitor copy-n-paste the link from onscreen text without needing to make modifications? Yes (unless they have CSS disabled).
Does this protect email addresses appearing in mailto: links and within HTML tag attributes? No.
How effective is this? In the aforementioned experiment, no spam emails were received when using just this technique.
Example
person@nullexample.com
Replacing the `@` and `.` characters
How does it work? The @ and . characters are replaced with alternative strings, such as AT and DOT, respectively. The exact replacements are configurable on the plugin’s settings page. By default, if you don’t specify custom replacements, the plugin will use entity substitution (@ becomes @ and . becomes .).
Uses CSS? No.
Uses JavasScript? No.
Can visitor copy-n-paste the link from onscreen text without needing to make modifications? No, though it should (hopefully) be clear to the user what they need to replace.
Does this protect emails appearing in mailto: links and within HTML tag attributes? Yes, though if you specify custom replacement strings visitors clicking on a mailto link will have to modify the email address that shows up in their mail program.
How effective is this? In the aforementioned experiment, almost no spam emails were received when using just this technique. As a bonus, this technique does not require the support of any particular client-side techniques (CSS or JavaScript).
Examples
Custom AT and DOT replacements
personATexampleDOTcom
[email protected]
Everything encoded (aka hexadecimal HTML entity substitution)
[email protected]
Changing text direction with CSS (not enabled by default)
How does it work? The email addresses are sent reversed in the markup. Using CSS, the text gets reversed so that visitors see the email addresses as intended. Email scrapers don’t recognize the emails in their reversed form and don’t typically utilize a CSS engine to help determine how text would look onscreen.
Uses CSS? Yes, which means if a visitor does not have CSS enabled, the emails will appear backwards to them.
Uses JavasScript? No.
Can visitor copy-n-paste the link from onscreen text without needing to make modifications? No, text copied in such a manner will be reversed. However, a right-click -> “copy link/email address” will work properly for linked email addresses.
Does this protect emails appearing in mailto: links and within HTML tag attributes? No.
How effective is this? In the aforementioned experiment, no spam emails were received when using just this technique.
Example:
moc.elpmaxe@nosrep
How it looks
If all techniques are enabled at once, the resulting obfuscation of the example link above is (for the full effect, view this in the page’s source or the readme.txt file directly):
moc.elpmaxenull@nosrep
However, in your browser it would appear to you as it does prior to obfuscation, and the link for the email would still work. Theoretically, however, spammers would have a somewhat more difficult time harvesting the emails you display or link to in your posts.
NOTE: (Only when using the custom replacement feature will visitors need to modify the email address for use in their email program.)
Links: Plugin Homepage | Plugin Directory Page | GitHub | Author Homepage
Template Tags
The plugin provides one optional template tag for use in your theme templates.
Functions
function c2c_obfuscate_email( $text, $args = array() )
Arguments
$text
Required argument. The text and/or HTML that contains email addresses that you want to be obfuscated.
$args
Optional argument. An array of configuration options, each element of which will override the plugin’s corresponding default setting.
encode_everything (boolean) : Encode all characters in the email address using hexadecimal HTML entity substitution?
use_text_direction (boolean) : Utilize CSS text direction technique?
use_display_none (boolean) : Utilize CSS display:none technique?
at_replace (string) : String to use in place of @ in email addresses (used only if encode_everything is false)
dot_replace (string) : String to use in place of . in email addresses (used only if encode_everything is false)
Examples
Basic usage. Obfuscate email addresses in $text according to current plugin settings.
Override all plugin default settings when obfuscating email addresses in $text and just use text direction technique.
true, ‘use_display_none’ => false, ‘encode_everything’ => false, ‘at_replace’ => ”, ‘dot_replace’ => ”)
) ); ?>
Hooks
The plugin exposes one filter for hooking. Typically, code making use of filters should ideally be put into a mu-plugin or site-specific plugin (which is beyond the scope of this readme to explain).
c2c_obfuscate_email_filters (filter)
The ‘c2c_obfuscate_email_filters’ filter allows you to customize what filters get processed for email obfuscation. The following filters are all filtered by default:
link_description
link_notes
bloginfo
nav_menu_description
term_description
the_title
the_content
get_the_excerpt
comment_text
list_cats
widget_text
the_author_email
get_comment_author_email
Arguments:
array $filters : the default array of filters
Example:
/**
* Also obfuscate emails appearing in custom field values.
*
* @param array $filters Filters that get filtered to obfuscate email addresses.
* @return array
*/
function change_c2c_obfuscate_email_filters( $filters ) {
$filters[] = 'the_meta';
return $filters;
}
add_filter( 'c2c_obfuscate_email_filters', 'change_c2c_obfuscate_email_filters' );
各版本下載點
- 方法一:點下方版本號的連結下載 ZIP 檔案後,登入網站後台左側選單「外掛」的「安裝外掛」,然後選擇上方的「上傳外掛」,把下載回去的 ZIP 外掛打包檔案上傳上去安裝與啟用。
- 方法二:透過「安裝外掛」的畫面右方搜尋功能,搜尋外掛名稱「Obfuscate Email」來進行安裝。
(建議使用方法二,確保安裝的版本符合當前運作的 WordPress 環境。
3.0 | 3.1 | 3.2 | 3.3 | 3.4 | 3.5 | 3.6 | 3.7 | 3.8 | 3.5.1 | 3.6.1 | 3.8.1 | trunk |
延伸相關外掛(你可能也想知道)
Akismet Anti-spam: Spam Protection 》Akismet會檢查您的評論和聯繫表單提交,將它們與全球垃圾郵件數據庫進行比對,以防止站點發佈惡意內容。您可以在部落格的“評論”管理畫面中檢查評論垃圾郵件的...。
Limit Login Attempts Reloaded – Login Security, Brute Force Protection, Firewall 》Limit Login Attempts Reloaded 是一款WordPress外掛,可阻止暴力破解攻擊並透過限制常規登錄、XMLRPC、Woocommerce和自訂登錄頁面的登錄嘗試次數來優化您的...。
Sucuri Security – Auditing, Malware Scanner and Security Hardening 》Sucuri Inc. 是全球公認的網站安全權威,專門為 WordPress 安全提供專業知識。, Sucuri Security WordPress 擴充套件對所有 WordPress 使用者免費提供。它是...。
Honeypot for Contact Form 7 — Protect Contact Form 7 spam with ease! [100% FREE Anti-Spam Plugin] 》這個簡單的外掛模組增強了優秀的Contact Form 7 (CF7) 外掛,加入基本的蜜罐反垃圾功能,以防止垃圾機器人,而無需使用醜陋的 captcha 碼。, 蜜罐的基本原理...。
ReCaptcha v2 for Contact Form 7 》Contact Form 7 v5.1 於 2018 年 12 月停止支援 reCaptcha v2,以及 [recaptcha] 標籤。此外掛從 Contact Form 7 5.0.5 重新帶回了這項功能,同時重新加入了 ...。
WP Mail Logging 》WP Mail Logging 是最受歡迎的 WordPress 或 WooCommerce 郵件記錄外掛程式。啟用後立即運作,無需任何設定。, 為什麼要記錄 WordPress 或 WooCommerce 發送...。
Spam protection, Anti-Spam, FireWall by CleanTalk 》Forms spam filter, Plugin extends spam protection for Gravity Forms. It filters spam submissions for each form created with Gravity Forms., MemberP...。
Gravity Forms Zero Spam 》這個 Gravity Forms 的外掛使用不會打擾使用者的防 spam 措施來封鎖垃圾郵件。您不需要進行任何設定或組態,只需要啟用這個外掛!, Gravity Forms 蜜罐欄位沒...。
Email Address Encoder 》這是一個輕量級的外掛,可以保護純文字的電子郵件地址和 mailto 鏈結免受電子郵件抓取機器人獵取,透過將它們編碼成十進位和十六進位實體。對文章、頁面、留...。
Simple Cloudflare Turnstile – CAPTCHA Alternative 》輕鬆地將 Cloudflare Turnstile 添加到您的 WordPress 網站中的所有表單中,以保護它們免受垃圾郵件的影響!, 一個用戶友好、保護隱私的 reCAPTCHA 替代方案...。
Contact Form 7 Image CAPTCHA, WPForms Image CAPTCHA, Contact Form 7 Spam Image CAPTCHA, WPForms Spam Image CAPTCHA, GDPR 》在你的Contact Form 7表單中添加一個SVG圖像驗證和蜜罐。這個驗證符合GDPR要求,因為圖像是內嵌的SVG格式,所以這個外掛程序不會像Google的ReCAPTCHA那樣通過...。
Simple Google reCAPTCHA 》Simple Google reCAPTCHA將保護您的WordPress!您可以在默認的v2復選框和v3(如隱形reCAPTCHA)之間進行選擇。, 不再有垃圾評論和針對用戶帳戶的暴力攻擊。小...。
Anti-Spam: Spam Protection | Block Spam Users, Comments, Forms 》Antispam 外掛。, 快速連結:升級 | 支援 | 贊助, 遏止垃圾電子郵件、垃圾評論、垃圾註冊、垃圾機器人和惡意網絡騷擾。透過這款維護完善的成熟外掛,執行診斷...。
reCAPTCHA for WooCommerce 》輕鬆將 Google reCAPTCHA 加入到 WooCommerce 結帳和表單中,以幫助防止垃圾郵件。, 支援的表單, 您目前可以在以下表單啟用 reCAPTCHA:, WooCommerce, , 結...。
Cookies for Comments 》這個外掛將會在你的部落格 HTML 的原始碼中新增一個樣式表或圖片。當瀏覽器讀取該樣式表或圖片時,會放置一個 Cookie。如果有使用者在這之後留下評論,該 Coo...。