Deleting accounts

[brell]

Since the numbers of hacking attacks are rising I propose:

1. Delete everyone that does not validate the first 10 minutes after registering.

2. Delete everyone that has a suspicious nickname.

Should we advertise this if you agree?

[brell]

Deleted:

Registration UserID: odallavagreg
Chosen screen name: LaRod Stephens-Howling
Not validated email address: fenyint7099@163.com
Chosen language: English
Coming from IP address: 183.163.87.51

[brell]

Two deleted, the latter one was validated:


Registration UserID:
sakPywherykek
Chosen screen name:
sakPywherykekPV
Not validated email address:
zmsen2010@gmail.com
Chosen language:
English
Coming from IP address:
218.66.250.106

Username:
IRiNNaa
[Ban this username]
E-Mail:
rrsrss.rssrrer@mail.ru
[Ban this Email address]
Latest IP addresses:
221.203.79.101
[Ban this IP address]

[brell]

Registration UserID: eercrbvgdh
Chosen screen name: eercrbvgdh
Not validated email address: dhandbagsbags@aol.com
Chosen language: English
Coming from IP address: 218.6.8.19

[RobSeegel]

7D6D7A73731F0 wrote: Since the numbers of hacking attacks are rising I propose:

1.  Delete everyone that does not validate the first 10 minutes after registering.

2.  Delete everyone that has a suspicious nickname.

Should we advertise this if you agree?

1 sounds reasonable, 2 is a bit tougher to nail down. I delete suspicious nicknames under the following circumstances:

- Their IP or email appears on stopforumspam.com
- They do not go online within 24 hours after registering/validating, which I find suspicious.

Typically, the first one catches the vast majority, the second generally gets the rest. I'm still testing out the the two plug-in modules I mentioned, one of which is hooked up to stopforumspam. The problem I have with that one, though, is I'm not sure immediately showing a rejection notice is a good thing. It encourages the attacker to try again, which is a bandwidth waster. I don't know if you've ever watched the error logs when the scripted attacks come in. I can only assume that they are scripted/automated because of the speed in which they come in.

I wonder if we returned a pseudo success - without ever mailing off the validation email, if that would curb the number of attacks. Instead of being hit 50 times, the automated attack would

think

it had succeeded and wait for the email which would never come. Perhaps that would reduce the number of attempts? The constant attempts can be almost as bad as fake accounts if there are enough of them.

[brell]

784548794F4F4D4F462A0 wrote:

I wonder if we returned a pseudo success - without ever mailing off the validation email, if that would curb the number of attacks. Instead of being hit 50 times, the automated attack would

think

it had succeeded and wait for the email which would never come. Perhaps that would reduce the number of attempts? The constant attempts can be almost as bad as fake accounts if there are enough of them.

Sounds good to me

[brell]

Registration UserID:
dzefcutgty
Chosen screen name:
dzefcutgty
Not validated email address:
det3fe4ew@mail.ru
Chosen language:
English
Coming from IP address:
46.174.64.95

Registration UserID:
jallereeboype
Chosen screen name:
jallereeboypeZK
Not validated email address:
nawgatattemia@mail.ru
Chosen language:
English
Coming from IP address:
46.118.89.7

[brell]

Registration UserID: santillagarr
Chosen screen name: Billups, Chauncey
Not validated email address: buyouq618@yeah.net
Chosen language: English
Coming from IP address: 183.163.83.254

[brell]

Registration UserID: blitlyAball
Chosen screen name: blitlyAballRE
Not validated email address: heripwz@hotmail.com">sheripwz@hotmail.com
Chosen language: English
Coming from IP address: 61.191.191.142

[brell]

Registration UserID: ayqribzykhct
Chosen screen name: north face outlet
Not validated email address: e.m.m.es.semm.es.se.afgy@gmail.com">se.m.m.es.semm.es.se.afgy@gmail.com
Chosen language: English
Coming from IP address: 218.6.15.112