Project

General

Profile

Feature #3489

Tighten security on CBOX demo site registration

Added by Matt Gold over 4 years ago. Updated about 3 years ago.

Status:
Resolved
Priority name:
Normal
Assignee:
Category name:
commonsinabox.org
Target version:
Start date:
2014-09-23
Due date:
% Done:

0%

Estimated time:

Description

Gary in IT had some good suggestions for tightening security on the CBOX demo site (which is currently in limbo as we await discussion of where it should be placed):

1. Maybe a robust CAPTCHA would suffice to keep out the bots?
2. Can we check the validity of the email used to register?
3. Can we limit the number of registrations from a given source IP per time period?

The captcha seems like an easy implementation and #3 seems worthwhile if there is an easy way to do it. I think WP already does 2, though I'm not sure what Gary means by "validity"


Related issues

Related to CUNY Academic Commons - Support #3424: Getting "Error establishing a database connection"Resolved2014-08-29

History

#1 Updated by Boone Gorges about 3 years ago

  • Status changed from Assigned to Resolved

The demo.commonsinabox.org site has a CAPTCHA for registration.

About a year ago, I built a system for the site that clears out all data - accounts and content - once daily. This seems to have solved most of the spam issues, so I'm going to mark this one resolved.

#2 Updated by Matt Gold about 3 years ago

Great. Thanks, Boone.

Also available in: Atom PDF