[WordPress] 外掛分享： SecureGate Captcha Lite

內容簡介

<html>
<head>
<meta charset="UTF-8">
</head>
<body>

<p><strong>SecureGate Captcha Lite 簡介：</strong> SecureGate Captcha Lite 是一款高效的安全套件，旨在保護您的 WordPress 網站免受騷擾性垃圾郵件、惡意機器人和暴力攻擊。透過像 Cloudflare Turnstile 這樣專業級工具，以及我們獨特的數學和字符 CAPTCHA 備用系統，我們確保您的網站保持不可侵入，同時為合法用戶提供無縫、隱私優先的體驗。</p>

<ul>
<li><strong>為什麼選擇 SecureGate Captcha Lite？</strong></li>
</ul>

<ul>
<li><strong>完整保護：</strong>保護所有關鍵的 WordPress 表單，包括管理員登錄、用戶註冊、密碼重置和評論提交。根據您的需求，每個表單都可以單獨啟用或禁用。</li>
<li><strong>隱私優先：</strong>設計時考慮了 GDPR 合規性。使用 Cloudflare Turnstile 進行隱私焦點檢測，並包含自託管的備用 CAPTCHA，不需要任何外部 API 連接。</li>
<li><strong>極速表現：</strong>優化的代碼僅在需要時加載。沒有多餘的元素，不會發出不必要的請求，完全與所有主要快取插件兼容，確保您的網站保持快速。</li>
<li><strong>智慧速率限制：</strong>智能速率限制通過跟踪失敗的登錄嘗試，自動暫時鎖定可疑 IP 地址，防止暴力攻擊。</li>
<li><strong>易於配置：</strong>直觀的管理界面，清晰設置 CAPTCHA 提供者、受保護表單和安全規則。幾分鐘內即可開始使用合理的默認值。</li>
</ul>

<ul>
<li><strong>核心功能：</strong></li>
</ul>

<ul>
<li><strong>CAPTCHA 提供者</strong></li>
<ul>
<li><strong>Cloudflare Turnstile：</strong>現代、注重隱私的 CAPTCHA，擁有優秀的 UX</li>
<li><strong>備用 CAPTCHA：</strong>自託管保護系統，可隨時工作</li>
</ul>
</ul>

<ul>
<li><strong>受保護表單：</strong>包括 WordPress 登錄、用戶註冊、密碼重置和評論提交</li>
<li><strong>安全功能：</strong>如速率限制、IP 阻塞、自訂閾值等</li>
<li><strong>隱私與合規性：</strong>包括 GDPR 就緒、數據最小化、7 天自動清理等</li>
<li><strong>性能優化：</strong>如條件加載、零影響、快取友好等功能</li>
<li><strong>適合對象：</strong>包括博客作者、會員網站、商務網站、個人博客和作品集網站</li>
<li><strong>技術規格：</strong>如 WordPress 版本、PHP 版本、多站點兼容性等</li>
</ul>

</body>
</html>
</ul>

外掛標籤

開發者團隊

📦 歷史版本下載

1.0.1trunk

原文外掛簡介

SecureGate Captcha Lite is a high-performance security suite built to safeguard your WordPress site from intrusive spam, malicious bots, and brute-force attacks. Leveraging professional-grade tools like Cloudflare Turnstile alongside our unique Math and Character CAPTCHA fallback system, we ensure your site remains impenetrable while maintaining a seamless, privacy-first experience for legitimate users.
Protect Your Store – Upgrade to Pro Now
Why Choose SecureGate Captcha Lite?
Complete Protection
Secure all critical WordPress forms including admin login, user registration, password reset, and comment submissions. Each form can be individually enabled or disabled based on your needs.
Privacy-First Approach
Built with GDPR compliance in mind. Uses Cloudflare Turnstile for privacy-focused bot detection and includes a self-hosted fallback CAPTCHA that requires zero external API connections.
Lightning Fast Performance
Optimized code that loads only when needed. No bloat, no unnecessary requests, and fully compatible with all major caching plugins to ensure your site remains fast.
Smart Rate Limiting
Intelligent rate limiting prevents brute-force attacks by tracking failed login attempts and automatically locking out suspicious IP addresses temporarily.
Easy to Configure
Intuitive admin interface with clear settings for CAPTCHA providers, protected forms, and security rules. Get started in minutes with sensible defaults.
Core Features
CAPTCHA Providers

Cloudflare Turnstile – Modern, privacy-focused CAPTCHA with excellent UX

Free forever with generous limits
Invisible verification for most users
No user frustration with image puzzles
Privacy-compliant (no cookies or tracking)
Easy API key setup

Built-in Fallback CAPTCHA – Self-hosted protection that works always

Math challenges (simple arithmetic)
Warped text recognition challenges
No external dependencies or API keys
GDPR compliant by design
Perfect for restricted networks

Protected Forms

WordPress Login – Protect admin and frontend login forms from credential stuffing
User Registration – Stop spam bot registrations instantly
Password Reset – Prevent password reset abuse and email flooding
Comment Forms – Block spam comments without moderation queues

Security Features

Rate Limiting – Configure maximum failed attempts before temporary lockout
Automatic IP Blocking – Temporary bans for suspicious IPs based on behavior
Customizable Thresholds – Set your own limits for attempts and lockout duration
Admin Exemptions – Administrators are automatically exempt to prevent lockouts
IP Allowlisting – Bypass CAPTCHA for trusted IP addresses

Privacy & Compliance

GDPR Ready – Anonymized IP logging with automatic expiration
Data Minimization – Only essential data is stored as transients
7-Day Auto-Cleanup – All logs automatically deleted after 7 days
No External Tracking – Built-in CAPTCHA requires no third-party services
User Control – Administrators can disable all logging if desired

Performance Optimizations

Conditional Loading – Scripts load only on protected pages
Zero Impact – No performance degradation on unprotected pages
Cache Friendly – Works seamlessly with WP Rocket, W3 Total Cache, LiteSpeed Cache
Lightweight Assets – Optimized CSS and JavaScript for minimal footprint
Database Efficiency – Uses WordPress transients instead of permanent database rows

Perfect For

Bloggers – Protect comments from spam without moderation
Membership Sites – Secure registration and login processes
Business Websites – Prevent fake registrations and form abuse
Personal Blogs – Simple setup with powerful protection
Portfolio Sites – Keep contact forms and comments spam-free

Technical Specifications

WordPress Version: 5.8 or higher
PHP Version: 7.4 or higher (PHP 8.0+ recommended)
Multisite Compatible: Yes
Translation Ready: Yes (with .pot file included)
Performance Impact: Negligible (loads only on protected forms)
Browser Support: All modern browsers (Chrome, Firefox, Safari, Edge)

Supported CAPTCHA Providers
Cloudflare Turnstile
Turnstile is Cloudflare’s modern, privacy-preserving alternative to traditional CAPTCHAs. It uses sophisticated browser challenges that are invisible to most legitimate users while effectively blocking bots.
Built-in Fallback CAPTCHA
Our self-hosted CAPTCHA system offers two challenge types:
– Math Challenges: Simple arithmetic problems (e.g., “What is 7 + 3?”)
– Text Recognition: Warped text characters requiring human recognition
Both are effective against automated bots while remaining accessible to humans.
Comparison with Other CAPTCHA Plugins
Unlike many CAPTCHA plugins that rely solely on external services, SecureGate Captcha Lite provides:
– Multiple provider support with automatic fallback
– Self-hosted option for complete independence
– Advanced rate limiting built-in
– Modern, user-friendly admin interface
– Regular updates and active development
– Clean, well-documented code
Privacy & Data Collection
What Data Does This Plugin Collect?
SecureGate Captcha Lite is designed with privacy as a core principle:
Stored Locally (in your WordPress database as transients):
* Anonymized IP addresses (last octet removed)
* Timestamp of verification attempts
* Success/failure status of CAPTCHA verifications
* Failed attempt counters for rate limiting
NOT Stored:
* User emails or usernames
* Personal identifying information
* Browser fingerprints
* Tracking cookies (plugin-side)
* Permanent user profiles
External Service Data:
When Cloudflare Turnstile is enabled, user browser data is sent to Cloudflare for bot detection. Please review Cloudflare’s Privacy Policy for details.
When using the Built-in CAPTCHA, NO external services are contacted.
Data Retention:
All logs are stored as WordPress transients and automatically deleted after 7 days. Administrators can disable logging entirely in settings.
Right to Erasure:
No personal data is collected that would require manual erasure requests under GDPR.
Support & Documentation
Need Help?

Documentation: Visit the plugin page for guides and tutorials
Support Forum: Get help from the community at WordPress.org Support
Bug Reports: Report issues on the support forum
Feature Requests: Share your ideas on the support forum

Response Time:
We monitor the support forum regularly and aim to respond within 24-48 hours for most queries.
Credits & Acknowledgments
Developed with ❤️ by R.Sabbir
Special Thanks:
* Cloudflare team for Turnstile
* WordPress community for feedback
* Early adopters and beta testers
Third-Party Services:
When Cloudflare Turnstile is enabled, this plugin connects to Cloudflare’s servers for CAPTCHA verification. By using Turnstile, you agree to Cloudflare’s Terms of Service and Privacy Policy.
About the Developer
R.Sabbir is a WordPress security specialist focused on creating user-friendly security solutions for WordPress sites. With years of experience in web development and security, the SecureGate Captcha plugin series aims to make enterprise-grade security accessible to everyone.
Other Plugins:
* Stay tuned for more security-focused WordPress plugins!
Rate This Plugin
If SecureGate Captcha Lite has helped protect your site, please consider leaving a 5-star review. Your feedback helps us improve and motivates continued development!

延伸相關外掛