openfairdb icon indicating copy to clipboard operation
openfairdb copied to clipboard

Published 20 hours ago verified publisher icon kartevonmorgen

remove email and phone from search result

Open art-ist opened this issue 9 years ago • 3 comments

To prevent spamming I'd suggest to remove email and phone from the search result and add endpoints /entries/:ID/phone and /entries/:ID/email. These could be easily throttled lateron to prevent harvesting and still keep functionality for the user.

art-ist avatar Nov 05 '15 16:11 art-ist

+1

flosse avatar Nov 05 '15 17:11 flosse

@art-ist what do you think prevents the spammer for looping over the :IDs?

flosse avatar Nov 24 '15 01:11 flosse

Throttling doesen't make i impossible but may make it inconvenient enough. If we have for example an increasing respinse time for calls fronm the same address at the same day, a human user might never recognize but a "looper" would verry soom be running into timeouts.

art-ist avatar Nov 24 '15 05:11 art-ist