It looks like we're seeing more spam modules uploaded from fake users. So I'm thinking that we need some kind of moderation system until we've validated the user.
Unfortunately this will require a pool of trusted users who can look over modules to make sure their not spam and "approve" uploads. (Approve meaning that superficially it looks legit, not that it's been shown to be bug or even malware-free.) We might even require the uploaders to send an e-mail to a mailing list saying "I've just uploaded this module. Please approve it." I imagine after a certain number of legit uploads, or some to-be-determined validation/verification process, users won't need to be moderated anymore.
