Comment 3 for bug 551906
Revision history for this message
| Chris (poser) wrote Re: [Bug 551906] Re: The rate-limiting mechanism on 'invalid' email-registration requests locks out users for one hour | #3 |
© 2004
Canonical Ltd.
•
Terms of use
•
Data privacy
•
Contact Launchpad Support
•
Blog
•
Careers
•
System status
•
7020100
(Get the code!)
I still don't think we're rate-limiting in the right way. What about
three attempts per hour? That should be enough for a user to come up
with a valid email address, and is no more of a spam threat....
Or, better yet, what if clicking on a received validation link reset the
timer, even if the registration attempt failed (in this case, because it
corresponded to an existing email address)? In the spamming scenario,
the user is still rate-locked, but in the honest-mistake scenario, the
user is able to send herself another email-registration
validation-request (presumably at a new email address).
(Of course if psiphon threw an error when users attempt to register
pre-existing email addressses, this would not be an issue. Presumably,
we avoid this because it would allow an adversary to enumerate email
addresses?)
> One of the goals of email verification was to prevent a malicious user
> from using Psiphon to spam other people (partly so that we're not a
> nuisance to people, partly so that we don't end up looking like a
> spammer). If we allow no-rate-limited unsuccessful change attempts, then
> a malicious user can just keep putting in email address and forcing us
> to send out rapid-fire emails to whomever he wants.
>
> This is related to another problem that has been discussed that I'll be
> adding a bug for shortly. (And then I'll add a link to it from here.)
>
> I'm going to mark this as invalid. But if you have further input or I've
> missed the point, please add comments.
>
> ** Changed in: psiphon
> Status: New => Invalid
>
--
<email address hidden> (PGP key at http://