Password sites - a possible way forward.
 

OK you have to understand that I am a complete moron and this may not be possible.

You can use .htaccess to redirect traffic from a certain domain so why cant you just drop a .htaccess file onto your server and redirect any traffic that comes from www.ultrapasswords.com to a pay per sign up program or to the join page of your site?

You see what I was thinking was that we have a central db of password sites and a script that automatically adds new password sites as people report them.

People can log in and add a password site and select the page that password traffic gets redirected to.

Cunning plan I think....

You don't already do that? :helpme

New password sites jump up everyday. This way when one comes along it gets denied access pretty quick.

What if the password site does not provide a link to the paysite (instead they force people to copy & paste the url)? Then your method would be insufficient.

With the right password protection script you wont have to worry about this crap.

good LUCK trying to fight the password site fight... you wont win shutting down each site one by one. As one goes down, prolly 3 more pop up.

Look at RIAA and P2P. Get a clue.

Instead, populate them with BS passwords that leave to console traps or trial pages or whatnot.

problem is alot of password sites use redirects to get around such things.

One key fix is to issue user names based on the members email address, that right there takes care of the user/pass list guessing programs.

Take it a step further and randomize the password also.

Something like

[email protected]:s97op3we

is a lot tougher to get than

monitor:speaker

Does anyone want me to set this up anyway as a free service? I have a lad in the office that can do the coding and I will bang it on my server.

Even if it blocks one of your passwords that is good enough I think.

sounds like a pretty good idea :thumbsup

give it a try man. post up the URL...