blocking unauthorized registrations

[chadness]

For a long time now (since version 2.11 of the bridge), I've recoded the registration to block anyone which domains can register.  This has mostly been done through the submit button script in smf_registration.html.php.  Basically, the script I wrote in just adds a validation in to make sure that the domain of the email address ends in the same last 7 characters (we have 3 different domains we use, but they all end with the same 7 characters).  However, I still get about 5 or so spammers a week registering accounts with email addresses that obviously don't pass the verification.  The only thing I can figure is that they are directly accessing the forum and somehow automating the submission, since I have the redirect lines in the forum index.php to keep people from accessing it directly.

My thought on a solution to this is to add the same redirect lines in SMF's registration.php file in the sources directory.  Does anyone see any harm in this (I was still able to register a test account through the bridge), or can you think of a better way to go about this? Maybe it would just be easier to recode SMF's registration file to do the same thing, and use it with captcha instead...

[Orstio]

You may also need to do the same with the Joomla default registration.  It can still be accessed if typed in directly to the browser.

[Kindred]

why not use the smf ban system?   If a domain is banned in smf, it won't be allowed to register...

[chadness]

Kindred - I do, but I still get lots of random people.

Orstio - I'll have to check that out.  That might be a more likely source of where the problem is coming from.