homepage Welcome to WebmasterWorld Guest from 54.167.144.202
register, free tools, login, search, pro membership, help, library, announcements, recent posts, open posts,
Become a Pro Member

Home / Forums Index / Code, Content, and Presentation / PHP Server Side Scripting
Forum Library, Charter, Moderators: coopster & jatar k

PHP Server Side Scripting Forum

    
one account only
per user
FridayNight

5+ Year Member



 
Msg#: 3746102 posted 6:18 am on Sep 17, 2008 (gmt 0)

i created a website where i want everyone to signup only once. it is very important that a person can create only one account not more. how could i achieve that? best things i came up with (although not 100% perfect):

1) they must confirm their account by sending text message from their phone

2) i send them PIN code via regular mail (costs me money)

how else could i do that? i know i can check that with cookies but experienced users can delete cookies.

i also tried to think to put a cookie on PC which has its own age - gets older. and if its younger than 24 hours, he cannot do anything in his account. this way i could prevent switching between accounts. then i hit same problem again - someone can delete cookies and go around it. any ideas?

 

vincevincevince

WebmasterWorld Senior Member vincevincevince us a WebmasterWorld Top Contributor of All Time 10+ Year Member



 
Msg#: 3746102 posted 6:23 am on Sep 17, 2008 (gmt 0)

  • Faxed or emailed copy of drivers license or passport.
  • Purchase of membership using credit card (warning re: disposable cards holds)
  • Required to telephone you for activation (or you telephone them)
  • Verification of name and address with other sources (electoral roll, telephone book, etc.) - no match means manual check
  • FridayNight

    5+ Year Member



     
    Msg#: 3746102 posted 6:29 am on Sep 17, 2008 (gmt 0)

    vince all these sound ok but the problem will be because i target couple of 100 users daily. how can i check things manually?

    fax - not everyone can make copy of passport (kids, people who dont have scanner/camera)

    pay $1 with cc - not everyone has cc

    send SMS to me? i think thats best solution i found so far. what do you think?

    penders

    WebmasterWorld Senior Member penders us a WebmasterWorld Top Contributor of All Time 5+ Year Member Top Contributors Of The Month



     
    Msg#: 3746102 posted 8:46 am on Sep 17, 2008 (gmt 0)

    send SMS to me? i think thats best solution i found so far. what do you think?

    Would your clients be OK with this? I'm not sure I would. Sending an SMS to them perhaps (with a confirm code) - but again would cost.

    Prevent people with the same IP signing up? Although this would prevent anyone on the same LAN from signing up!

    FridayNight

    5+ Year Member



     
    Msg#: 3746102 posted 10:30 am on Sep 17, 2008 (gmt 0)

    yeah there is no easy solution to this. i cannot limit one person to one IP. there are companies behind firewalls with 1000 employees and only one IP.

    would you send SMS if you really want to join the site?

    vincevincevince

    WebmasterWorld Senior Member vincevincevince us a WebmasterWorld Top Contributor of All Time 10+ Year Member



     
    Msg#: 3746102 posted 11:06 am on Sep 17, 2008 (gmt 0)

    I wouldn't send you an SMS even if there were substantial benefits to me in doing so. I don't own a mobile telephone.

    henry0

    WebmasterWorld Senior Member henry0 us a WebmasterWorld Top Contributor of All Time 10+ Year Member



     
    Msg#: 3746102 posted 11:31 am on Sep 17, 2008 (gmt 0)

    There is perhaps a solution
    I did a quick search for "driver license" database
    there are a bunch of "pro" that for a fee let you search a whole country DL db
    you might try to deal with those guys and figure how you could query their DB.

    Will your user send you their driver license number?

    Then you could use it as a login access

    Sekka

    5+ Year Member



     
    Msg#: 3746102 posted 11:36 am on Sep 17, 2008 (gmt 0)

    I respect what you're trying to achieve, but its almost an impossible task.

    First, there's the passive protection, things which require no effort from the user. These are things like making sure there's 1 account to an email addresss, creating algorithms to detect accounts with similar information and flag them for moderation, etc.

    Then there's the active type. These can be small charges to cards, SMS codes, etc. Problem being they just add to the registration process and can deter users.

    No matter what methods you undertake, people will always find a way of creating more that one account. This is a fact you are just going to have to accept. People can use their friend's phones, cards, etc. The list is endless. People can be very creative when they want something!

    As VVV suggested, SMS codes and small card charges would probably be your best bet.

    FridayNight

    5+ Year Member



     
    Msg#: 3746102 posted 1:39 pm on Sep 17, 2008 (gmt 0)

    drivers licence wont work - lots of visitors will be 15,16,17 yrs old.

    >>People can be very creative when they want something!

    exactly. thats why i am afraid of! because they will WANT to create more accounts.

    >>>As VVV suggested, SMS codes and small card charges would probably be your best bet.

    i guess so but not everyone owns a credit card. i guess i will start with checking cookies and other data but then switch to sms as soon as possible.

    vincevincevince

    WebmasterWorld Senior Member vincevincevince us a WebmasterWorld Top Contributor of All Time 10+ Year Member



     
    Msg#: 3746102 posted 2:35 pm on Sep 17, 2008 (gmt 0)

    Multiple levels of verification; simple cookie / email unique test being good for up to 10 posts, 5 messages and 1 photo; go past that and you need Level 2 Authorisation (SMS or Fax or $1 pre-authorisation)... etc.

    StoutFiles

    WebmasterWorld Senior Member 5+ Year Member



     
    Msg#: 3746102 posted 2:58 pm on Sep 17, 2008 (gmt 0)

    Maybe if you could state exactly why they would want more than one account we could increase the ideas.

    vincevincevince

    WebmasterWorld Senior Member vincevincevince us a WebmasterWorld Top Contributor of All Time 10+ Year Member



     
    Msg#: 3746102 posted 3:00 pm on Sep 17, 2008 (gmt 0)

    StoutFiles has a good point. Could you also explain why you don't want them to have more than one account? Often the best answer to a problem is to widen things out and stop the problem occurring.

    FridayNight

    5+ Year Member



     
    Msg#: 3746102 posted 4:29 pm on Sep 17, 2008 (gmt 0)

    hmmmm your idea is not that bad.
    thanks

    Global Options:
     top home search open messages active posts  
     

    Home / Forums Index / Code, Content, and Presentation / PHP Server Side Scripting
    rss feed

    All trademarks and copyrights held by respective owners. Member comments are owned by the poster.
    Home ¦ Free Tools ¦ Terms of Service ¦ Privacy Policy ¦ Report Problem ¦ About ¦ Library ¦ Newsletter
    WebmasterWorld is a Developer Shed Community owned by Jim Boykin.
    © Webmaster World 1996-2014 all rights reserved