1. This site uses cookies. By continuing to use this site, you are agreeing to our use of cookies. Learn More.

[Suggestion] User banning options (Flash cookies)

Discussion in 'XenForo Suggestions' started by mlx, Sep 4, 2010.

  1. mlx

    mlx Well-Known Member

    Most people we had to ban from our forums in the past are on dynamic IP ranges. So obviously it's pretty easy for them to sign up again using a different IP and email address. And we cannot ban an entire IP range of a huge provider.

    I was thinking it might be a good idea trying to track them using Flash cookies.

    Most people would just clear their browser cookies, get a new IP and email address and come back. If we are lucky they forget about the possibility to use Flash cookies to detect them.

    What do you think?
     
    James, krstep, cedivad and 2 others like this.
  2. Elizabeth

    Elizabeth Well-Known Member

    Anything using flash would not be a good option. I check my site often using my iPhone and flash is not an option on the iPhone.

    Liz
     
  3. mlx

    mlx Well-Known Member

    I don't think you would notice it. The Flash cookie detection would just not work for those not using Flash. But as a user everything would work as usual. And Flash would not be required to view the site or anything.
     
  4. Elizabeth

    Elizabeth Well-Known Member

    Wouldn't it have to work for the admin tho? Liz
     
  5. mlx

    mlx Well-Known Member

    The idea I had in mind is that we are setting a cookie with the user ID in Flash - if Flash is available on the end user's computer.

    Now we, as an admin, have to ban that user.

    The user clears his browser cookies, makes sure he uses a different IP and email address and tries to signup again.

    We are once again trying to check if Flash is available now. If it is, we are checking the Flash cookie. If he still has the user ID set we are not letting him sign up again.

    Some people don't even know Flash cookies exist, so chances are they don't know how to clear them.

    Not sure if that makes any sense or if it's worthless. Just an idea ;)
     
  6. Elizabeth

    Elizabeth Well-Known Member

    Okay, you just went way over my head. Liz
     
  7. Hatsu

    Hatsu Member

    A miserable user hack is far more useful than this.
     
  8. mlx

    mlx Well-Known Member

    Having that Flash cookie set might be useful for that hack as well, wouldn't it?
     
  9. Hatsu

    Hatsu Member

    Only if you exaggerate and the user re-registers.
     
  10. Accreal

    Accreal Member

    And where does iPhone? With iPhones all questions to Steve Jobs.
    But this does not mean that the idea I like. 

    Steve Jobs did not seem to want to introduce support for flash 
     
  11. Elizabeth

    Elizabeth Well-Known Member

    No, he doesn't and actually I agree with the idea of no flash. I'm not fond of it either. Liz
     
  12. krstep

    krstep Active Member

    Even though I like the idea very much too keep annoying people off my forum, I think this is best suited as a mod.
     
  13. Ben Davis

    Ben Davis Active Member

    I don't like the idea. It is kinda pointless. For starters your banking on the fact that the user has some version of flash running when he attempts to sign up, etc.
    Surely if someone was to go to all the trouble of changing their IP, clearing their browsers cache and getting a new email then they would already know that XenForo uses Flash for user verification during the sign-up process. From there all they would have to do is google about how to remove flash cookies and your entire plan flops to the floor.

    Due to the amount of people arguing back and forth when someone stamps on their idea, I'd like to point out that this is in no way an attack on you. I was merely pointing out that the idea seems a little pointless.
     

Share This Page