my last post in this thread because we are going off-topic discard messages on a MTA is the *last resort* if nothing else happens but not the solution for a broken web-app because it is the wrong layer
hence even if you insist in "more than 3 dots in username part" this belong to the *web application* and not to the MTA Am 22.11.2013 12:51, schrieb Alexander Farber: > I admin this website for 3 years already and > despite it being just a small obscure card game - > there haven't been a month without a challenge, > where I had to go and change something manually. a admin 200 websites for 10 years already > If you think, that a CAPTCHA or anything else > will stop all the problems and you never have > to touch anything, you are so wrong :-) since i do my job for 10 years now i now that "never have to touch anything" is plain wrong, but ignore problems root causes is terrible wrong i good web-form these days doe snot relie only on the captcha * it is using a captcha in first front * it is using a hidden session token *too* * it i using one or more spam-trap fields *too* and after that is done hence i use even GeoIP to lock countries as i had a regional website not long ago where all the guestbook spam came from different ip-addresses in India and Pakistan which where for sure humans because they passed all 3 protections a few times per day
