We get about 99% or more of spam accounts. Hundreds a day. They generate a shit ton of spam emails.
I have temporarily suspended any new registrations and put a note on the front page to ask people to send an email to firstname.lastname@example.org and I will manually create an account.
We need to consider a central authentication backend for all IPFire users on all IPFire-hosted services so that we protect that one and manage only that one and not multiple ones where we have no or little control over.
OAuth springs to mind. I am quite short on time now to investigate any good solutions. Any help is appreciated.
This has now been implemented!