Fórum

  1. Início
  2. Portal
  3. Can reserved credentials be expanded to deal with spam accounts?

Can reserved credentials be expanded to deal with spam accounts?

Michael Norton, modificado 7 Anos atrás.

Can reserved credentials be expanded to deal with spam accounts?

New Member Postagens: 5 Data de Entrada: 01/10/14 Postagens Recentes
Hi all

We use Liferay 6.2 and allow anyone to create an account on our platform.

We run into an issue, where we have a number of spam accounts that get created and we have to manually delete them and add the email address to the reserved credentials email list which stops them creating a new account. As you can imagine this is quite labour intensive.

Is there a way to allow domain names to be added to block accounts that are created or is there a better way of managing who can create accounts on the platform.?

We have a list of the most common domain names that we would like to block..

Cheers
Michael
thumbnail
Samuel Kong, modificado 7 Anos atrás.

RE: Can reserved credentials be expanded to deal with spam accounts?

Liferay Legend Postagens: 1902 Data de Entrada: 10/03/08 Postagens Recentes
You may want to consider creating a custom EmailAddressValidator.
    #
    # Input a class name that implements
    # com.liferay.portal.security.auth.EmailAddressValidator. This class will be
    # called to validate user email addresses.
    #
    users.email.address.validator=com.liferay.portal.security.auth.DefaultEmailAddressValidator
    #users.email.address.validator=com.liferay.portal.security.auth.LiberalEmailAddressValidator
thumbnail
David H Nebinger, modificado 7 Anos atrás.

RE: Can reserved credentials be expanded to deal with spam accounts?

Liferay Legend Postagens: 14919 Data de Entrada: 02/09/06 Postagens Recentes
In addition if you're open on the net you may want to consider:

  • Enabling captcha during registration to prevent bots.
  • Using the Antisami hook to provide some spam blocking capabilities.
  • Consider workflow for new user accounts, you can block folks from getting in until you approve them.
  • Enabling email verification to catch those that just want to create an account, post, then move on.







Come meet me at the LSNA!
Michael Norton, modificado 7 Anos atrás.

RE: Can reserved credentials be expanded to deal with spam accounts?

New Member Postagens: 5 Data de Entrada: 01/10/14 Postagens Recentes
Thanks Samuel and David

Samuel, thanks for that. I’ll have a chat with the developers I work with to see if this could be implemented. Maybe I should have mentioned that I’m more of an advanced admin person rather than a developer.

David, thanks for the list. We have Captcha turned on and validation turned on and I’ll check about antisami. I think we have that as well.

We have a couple of thousand new members each month, so that would be difficult to have an approval process. Unless there was a way to have a black list of email domain as part of the work flow that we could update.

Is there anything like that available anywhere?

Cheers
Michael
thumbnail
Samuel Kong, modificado 7 Anos atrás.

RE: Can reserved credentials be expanded to deal with spam accounts?

Liferay Legend Postagens: 1902 Data de Entrada: 10/03/08 Postagens Recentes
There is a way way to automatically black list email domains as a part of the workflow by using workflow scripts. (But you'll probably still need your developer to help write the script.)