La Sentinelle antispam


Feel safe knowing that your website is safe from spam. La Sentinelle will guard your WordPress website against spam in a simple and effective way.
It has antispam filters for comment forms and registration forms and can be extended to support plugins.
The default settings should catch most spambots, and there is a settingspage to set it up according to your wishes.

Current features include:

  • 3 antispam features; Honeypot, Nonce, Form Timeout.
  • These 3 spamfilters depend on JavaScript on the frontend.
  • 1 antispam feature; Stop Forum Spam.
  • Settingspage to set things up according to your wishes.
  • Transparent to the visitor, no nagging with Captcha’s or other annoying things.
  • By default no use of third-party services and no tracking of visitors.
  • Lightweight and simple code.
  • Logging for WordPress Comments and which spamfilter marked it as spam.
  • Logging for Custom forms and which spamfilter marked it as spam.
  • Statistics for every form how many spam submissions were blocked.

WordPress forms that are protected:

  • WordPress Comments form.
  • WordPress Login form.
  • WordPress Register form.
  • WordPress Lost Password form.

Form Plugins that are protected:


If you have a problem or a feature request, please post it on the plugin’s support forum on I will do my best to respond as soon as possible.

If you send me an email, I will not reply. Please use the support forum.


Translations can be added very easily through GlotPress.
You can start translating strings there for your locale. They need to be validated though, so if there’s no validator yet, and you want to apply for being validator (PTE), please post it on the support forum.
I will make a request on make/polyglots to have you added as validator for this plugin/locale.

How to choose an antispam plugin

When you look through the WordPress Plugin Repository you will see more than a hundred antispam plugins.
Which one is the best one? Short answer, there is no „best one“. No spamfilter and no method for spamfiltering is perfect.
Slightly longer answer, you could try about twenty and choose the one that fits your needs best.

But there is also a really long answer.
There are different methods that can be used against spam, and every method has its drawbacks.

  • Third party services: Services like Akismet, Stop Forum Spam and also reCAPTCHA offer third party services to check for spam. This can be very effective, but you are giving user submitted data away to these third parties and are also giving your users up for tracking them.
  • Captcha’s, reCAPTCHA and Quizz Questions: You are annoying your users. This also counts for reCAPTCHA for visitors who have third party cookies disabled.
  • Blacklists: Often running behind the facts. That goes for the way of getting users off that list, and also in getting users on that list.
  • Referrer check: check if the Referer header is set correctly. You can never trust it is set correctly. Modern browsers are limiting the use of Referers, though for now that is mostly for third-party domains.
  • JavaScript methods: Spammers often (always?) don’t use JavaScript, they just post the form with spammy data. Drawback is that statistics say that about 1 percent of users has JavaScript disabled. Also, some websites have broken JavaScript, which will make the spamfilter break as well.
  • Activation email for registering users. Users only get activated after clicking a link in an activation email. You still have all the non-activated users in your site however.

You could have a bright idea about combining several methods, but then you get the drawbacks of all the methods you use.

Another complication of choosing a good plugin is that most antispam plugins don’t tell you what methods they use. The documentation doesn’t tell you, and looking at the source code just leaves you confused at the chaos that it often is.

My main motivation for writing this plugin is to offer a plugin that does spamfiltering with JavaScript methods in a simple and effective way.
The claimed 1 percent of users that has JavaScript disabled will also be tech-savy enough to enable it again for your website.


This plugin is compatible with ClassicPress.


This plugin is also available in GitLab


  • Settings page with the spamfilters that are enabled by default.
  • Settings page with the forms for which the spamfilters are enabled.
  • Settings page with extra options.
  • Settings page with statistics about the spam that was blocked or cought together with support links.



  • Install the plugin through the admin page „Plugins“.
  • Alternatively, unpack and upload the contents of the zipfile to your ‚/wp-content/plugins/‘ directory.
  • Activate the plugin through the ‚Plugins‘ menu in WordPress.
  • That’s it.


The plugin itself is released under the GNU General Public License. A copy of this license can be found at the license homepage or in the la-sentinelle.php file at the top.


I get false positives

It could be that you have a JavaScript error. That way the spamfilters won’t work and all messages get flagged as spam.
You could go to your form page, right click on the page, select „Inspect Element“ > Console-tab. Reload the page and see if there are errors in your console.

I am being targeted by a spammer

That is unfortunate. The default spamfilters in this plugin only protects against general spambots that are targeting any form on any website.
First thing you can do is enable the ‚Stop Forum Spam‘ spamfilter, that should help against most human spammers and targeted attacks.
If that doesn’t help, I advise to add an extra plugin in the form of Akismet, that should provide a good defense against human spammers and targeted attacks.


20. März 2021
Le tri est efficace aussi bien sur les commentaires qu'avec le formulaire de contact, c'est pile ce que je cherchais.
10. Dezember 2020
I was using a similar plugin before, but that plugin only dealt with comments. It did its job, but after a while, I got more and more spam messages through my contact form. I was tempted to remove it entirely, but I did get messages through there on rare occasion. So, I decided to see if I could find another antispam plugin that I wouldn't have to add to my privacy statement. Eventually, I came across La Sentinelle. It was clear that it was the same type as my former plugin, but it didn't limit itself to comments, so I decided to give it a try. It worked just as well for comments as the old one, but alas, it still wasn't blocking the emails. But I didn't give up! I figured out it just didn't support the form plugin I use, so I submitted a request in the support forum. The developer responded very promptly (I think it was the next day) and maybe a day after that, updated the plugin. I have not seen a single spam email since. Thank you very much for providing a simple antispam plugin that works! 🙂
Lies alle 9 Rezensionen

Mitwirkende & Entwickler

„La Sentinelle antispam“ ist Open-Source-Software. Folgende Menschen haben an diesem Plugin mitgewirkt:


„La Sentinelle antispam“ wurde in 3 Sprachen übersetzt. Danke an die Übersetzerinnen und Übersetzer für ihre Mitwirkung.

Übersetze „La Sentinelle antispam“ in deine Sprache.

Interessiert an der Entwicklung?

Durchstöbere den Code, sieh dir das SVN Repository an oder abonniere das Entwicklungsprotokoll per RSS.



  • 2021-10-21
  • Security fix: use sanitize_text_field() for log page.
  • Update ‚uninstall.php‘ with recent changes.


  • 2021-09-13
  • Add link to open all spam submissions at once to log page.


  • 2021-09-02
  • Support widget in Noptin as well.
  • More compact content of spam submissions.


  • 2021-08-31
  • Save spam submissions of plugin forms.
  • Add admin page to view and delete these spam submissions.
  • Remove old spam submissions as well, if option is enabled.
  • Add support for Newsletter Optin Box plugin (noptin).
  • Fix handler for Caldera Forms.
  • Some updates from phpcs and wpcs.


  • 2021-05-19
  • Remove checks from EDD purchase form when user is logged in already.


  • 2021-05-17
  • Support Easy Digital Downloads plugin again. Login form only as non-AJAX.


  • 2021-05-03
  • Fix form submission when using http on a https website or viceversa.


  • 2021-03-10
  • Only filter on $_POST requests.
  • Better check on Nonce length.


  • 2021-02-25
  • Fix registering at multisite installs.
  • Fix login filter for XMLRPC.


  • 2020-12-24
  • Drop support for Easy Digital Downloads, they do not allow plugins to hook into them since 2.9.24.
  • Add text for Clean Login to settingspage.


  • 2020-12-07
  • Really have Stop Forum Spam disabled by default.


  • 2020-12-07
  • Add Stop Forum Spam as spamfilter (disabled by default).
  • Add options for everest and sfs to uninstall.php.


  • 2020-12-02
  • Support Everest Forms plugin.
  • Add container div around form fields.
  • Use ‚intval()‘ for all statistics.


  • 2020-04-29
  • Use ‚_n()‘ instead of ‚esc_html__()‘ for formatting numbers.


  • 2020-04-14
  • Run timeout function only once.
  • Remove function ‚la_sentinelle_timout_clock‘.
  • Add uninstall.php file to uninstall options from db.


  • 2020-02-23
  • Use classes, not ids for input fields.
  • Add support for Clean Login (only login form for now).
  • Set Nonce by default as disabled.
  • Support new wp_initialize_site action for multisite.


  • 2019-03-09
  • Rewrite error messages for Contact Form 7.
  • Use esc_html functions everywhere.


  • 2019-02-07
  • Add support for Caldera Forms plugin.
  • Add support for Easy Digital Downloads plugin.
  • Add support for Formidable plugin.
  • Remove unneeded option to enable for Contact Form 7.
  • Rewrite functions for statistics.
  • Only show statistics for active plugin.


  • 2019-01-08
  • Add some accessibility fixes.
  • Don’t use transients for hashed field names, is faster this way.
  • Add review link to admin page.


  • 2018-12-20
  • Fix register form.
  • Add more statistics.
  • Refactor WooCommerce hooks into WordPress hooks.


  • 2018-12-20
  • Add counter for comments blocked.


  • 2018-12-19
  • Add option to save or not save spam comments (default is save).
  • Change timeout from 3s to 1s.
  • Only load admin code on admin pages.


  • 2018-11-20
  • Fix admin login.


  • 2018-11-16
  • Add settings for each supported form.
  • Rewrite JavaScript to support multiple forms.
  • Always enqueue JavaScript.


  • 2018-08-29
  • Support WooCommerce forms (Login form, Lost Password form).
  • Add log as comment_meta for comment form.
  • Add ‚li‘ for spam comments to dashboard widget ‚Right Now‘.
  • Remove ‚la_sentinelle_preprocess_comment‘ function, was unused.


  • 2018-08-22
  • Add option to remove spam comments after 3 months.


  • 2018-08-04
  • Show text when no supported plugins are installed.
  • Show correct message on login form for timeout.
  • Change timeout from 5s to 3s.


  • 2018-07-27
  • Initial release