Recently people have used services to generate 10-Minute mails to signup on my website. I would like to separate proper mails from spam-mails. I know that Discord has such a system, when signing up with a mail it would just say "invalid mail" and block you from signing up.
I have tried to find a solution on the web, but this doesn't seem to be a popular topic.
My first idea: Having a whitelist of mails like Gmail, GMX, iCloud, etc, and prompt users that don't have one of these emails with an additional phone number request (or something similar). This would help keeping spam out of my website.
My second idea: Having bots that scrape the most popular spam-mail-generators, and generates a list of blacklisted emails. This seems quite difficult because I would have to make an individual scraper for each website. Most websites also get different domains every day so I would have to scrape the sites regularly.
I couldn't find any APIs or any help in general on the internet.
Recently I found out that there also are public phone numbers. My next step would be to detect these too.
Is there a way of doing what I'm trying to? Should I maybe completely change my method of preventing spam registrations on my website (I'm already using reCaptcha, I mean preventing humans that have bad intentions of spam, etc)?
Kind regards, Florian Covy
You can try either deep-email-validator or email-deep-validator ON TOP OF a confirmation email system. Note that using these validators alone is not enough, but they provide a first layer of "security" against disposable emails.