Logo Questions Linux Laravel Mysql Ubuntu Git Menu
HTML CSS JAVASCRIPT SQL PYTHON PHP BOOTSTRAP JAVA JQUERY R React Kotlin
 

Best way to stop a single person from creating multiple accounts

Tags:

authentication

php

mysql

login

registration

login-control

I'm creating a game currently and I want to limit one account per person. I have a lot of families that want to play and I can't think of a way to decipher families from cheaters.

The way I'm planning on doing it currently is checking cookies and sessions to see if any are set on that computer if they are then I know someone has already played from that account. Than I will check their IP against the IP's I have stored in my database (I am storing the registration IP for each account as well as the last IP they logged in from). If they don't match any of those I than check the Email they have signed up with and checked to make sure that email isn't already used.

My problem is that while this may stop cheaters it is also stopping families who have a single computer.

Does anyone have any suggestions or from experience what you have done?

Thanks in advance,

Jeff

like image 775
jefffan24 Avatar asked Nov 27 '10 17:11

jefffan24

3 Answers

Honestly, my advice is to simply not worry about it. Build the application in such a way that this type of behavior doesn't completely corrupt the system.

I have an iPhone game out there that could potentially suffer from the multiple accounts issue. In the end, I had to come to the realization that people will use software how they want. If you want to crack CS4, you will. Rather than focusing on restricting this type of behavior, design the app in such a way that it doesn't really matter.

Good luck!

like image 109
DexterW Avatar answered Nov 04 '22 22:11

DexterW

Some thoughts

There is no guarantee that an IP address corresponds to one person. Somtimes an entire village is seen from a single IP address. Also a usual internet connection has a dynamic IP address that can change any time.

Conclusion: Diffrentiating users by IP addresses is useless.

You may try to filter the multi-account players by checking for suspicious activities, but that may also not be of much help, since it would be hard to distinguish friends just playing together from real cheaters.

All in all, this is a problem to which no effective solution exists.

By the way, some games (for example EVE Online) encourage people having multiple accounts. Maybe you shouldn't worry about it either.

like image 4
Venemo Avatar answered Nov 04 '22 22:11

Venemo

You could check two way authentication/ One time password. Such as sending an sms to their phone for a confirmation code. One phone number per person.

like image 4
ibrahim Avatar answered Nov 04 '22 21:11

ibrahim
Sign in to Comment

Related questions

How to middle align cell value in PhpSpreadsheet?
Telegram bot Can't find end of the entity starting at (truncated...)
Livewire encountered corrupt data when trying to hydrate the … component
Implementing permissions in PHP
What happens if MySQL connections continually aren't closed on PHP pages?
What's in your PHP toolset? [closed]
PHP Framework for form-intensive application
Extract floating point numbers from a string in PHP
Get next auto increment
Is preventing XSS and SQL Injection as easy as does this
Has anyone used Lua to build a web application? [closed]
PHP file_get_contents with php intact?
Using a database class in my user class
php reading mysql bit field returning weird character
How to hide controller name in the url in CodeIgniter?
how to subtract two dates and times to get difference
How to preSelect an html dropdown list with php? [duplicate]
php fopen returns false but file is readable/writable
Is replacing a line break UTF-8 safe?
mkdir and subfolders

Donate For Us

If you love us? You can donate to us via Paypal or buy me a coffee so we can maintain and grow! Thank you!