[Bug 570764] Need tooling to track account creation activity.
Bugzilla Link | 570764 |
Status | NEW |
Importance | P3 normal |
Reported | Jan 29, 2021 11:55 EDT |
Modified | Feb 01, 2021 14:56 EDT |
Blocks | 570042 |
Description
With the recent 'attack' on our accounts creation process we ended up with nearly 16k bogus accounts.
In order to catch these things earlier, we need to improve our monitoring processes and start collecting some longer term data so we can tune the monitoring and rate limit requests.
For monitoring, I'm thinking that more than 100 account creations/hour probably indicates that something is fishy and needs to be looked at.
With the longer term data I think we should be collecting:
email domain
subnet
time
We probably only need a rolling years worth of data, but that should let us look for patterns and tune our processes.
Thoughts?
-M.