You're right about that - already with the PHP script we have, there are a lot of accounts made because a mistaken username was entered (never to be used again) - I can imagine a large scale of this.
What about improving the current PHP login to where you require username, and maybe some more information like a valid email (each email is entitled to a stated amount of accounts). The username then converts into numbers, letters are according to their order in the alphabet (ex. angelox = 1.14.7.5.12.15). Passwords are not encrypted, but that could and should be done.
|