发表新帖
发表新帖

How to defend against users with Multiple Accounts?

前端 未结
关注
7 1499
旧巷少年郎
旧巷少年郎 2021-01-03 00:35

We have a service where we literally give away free money.

Naturally said service is ripe for abuse. To defend against this we do the following:

  • log

7条回答
  • 猫巷女王i
    猫巷女王i (楼主)
    2021-01-03 01:21

    Re: signing up for new email accounts...

    A user doesn't even need to do that. Please feel free to send your mail to brian_s@mailinator.com, or feydr.asks.a.question@spamherelots.com, or stackoverflow@safetymail.info, or my_arbitrary_username@zippymail.info. I haven't registered any of those email addresses, but all of them will work.

    Those domains are owned by ManyBrain, and they (and probably others as well) set the domain to accept any email user. ManyBrain in particular then makes the inboxes for those emails publicly accessible without any registration (stripping everything by text from the email and deleting old mail). Check it out: admin@mailinator.com's email inbox!

    Others have mentioned ways to try and keep user identities unique. This is just one more reason to not trust email addresses.

    0 讨论(0)
 看不清?
提交回复
热议问题