27 Jul
2011
27 Jul
'11
10:45 a.m.
On Jul 27, 2011, at 10:26 AM, Jelle Scholtalbers wrote:
Wouldn't it be better to at least validate e-mail addresses of new users on the main instance? This would probably resolve most issues related to unwanted content on the server?
Not in our experience, valid email addresses are trivial to fake. Slightly creepy to require, but more of a pain to fake is a Facebook or LinkedIn account. I've done this (OAuth 2.0) in Java servlets, but not Python yet.... On the other hand, isn't user data supposed to require a login to view? i.e., was the inappropriate content being served or just stored on the
public server?