I think I’ll be making some changes to the way comments are working. Since the switchover to WordPress, I’ve been requiring all user comments to be explicitly “approved” by an administrator (currently, me) before becoming publicly visible. That’s lame. Users should be able to comment right away, and see their comments show up.
On the other hand, WordPress doesn’t have an exact equivalent to the mt-blacklist plugin I was using in Movable Type to keep ahead of comment spam. Though there was some funkiness in how it operated, mt-blacklist was mostly doing an okay job of stopping comment spam without my having to see it. Now that I’m manually performing that task myself, I’m quickly growing dissatisfied with doing so.
So I think I might try the following: WordPress has a self-service “user registration” feature that only requires a valid email address. I’m thinking I’ll enable that, and then make it so registered users have the ability to post without needing their messages to be moderated. Unregistered users will still be able to post, but their comments will need to be approved before becoming publicly visible.
Comment spammers will still be able to register and post spam, if they really want to; if that happens I’ll delete their comments after the fact. If it happens a lot I’ll go back to the current system, I guess.
Your thoughts on all this are humbly solicited. (Though at the moment they’ll sit and wait for me to approve them before anyone else gets to see them.)
Update: I didn’t do any of the above stuff involving requiring registration. See comments below for details. Comment moderation is now turned off. Bring it on, comment spammers.