Hello, I have a website built on Laravel php framework which is running very well on my ispconfig 3.2 host. However, there are many random user registrations everyday. These users do not like to activate their email addresses. So what are their purpose on registering on my website? Are they planning to inject malware into my site? Please share you experiences.
Nothing to worry about, most likely the usual spam bots. Add a captcha to your website registration form, if you have not done that yet, and add some code to clean up non-confirmed registration after some time (e.g. a day or two).
Btw. I hope the column behind the date is not an unencrypted password column? If these are passwords, change your code and take care to securely hash passwords and use a salt for the hashed passwords.
Those random strings are their usernames. So I don't have to worry any more. I set all web applications to use SMTP with a dedicated account + passwords. Also my CSF firewall only allow postfix and dovecot groups to send out emails.
