Hacker News new | past | comments | ask | show | jobs | submit login

Just so people can watch the detailed developer introduction.

Specifically:

It verifies the "realness" of the account, so everyone claiming that they need user's real email address for "fraud detection" can't argue that nonsense anymore. We all know that argument was just a cover for "we want to be able to spam our users with impunity", but this specifically addresses that argument just to be sure.




> ...can't argue that nonsense anymore. We all know that argument was just a cover for "we want to be able to spam our users with impunity"

Run a site that allows/displays user submitted content and you'll likely change your mind about that being a cover or bogus argument.


But requiring an email hardly solves that problem.

And very few apps (at least of what I use) that have 3rd party auth have features where user content is displayed to others.


It does significantly reduce the problem.


How? Is it because you have "proof" that it's a real user?

If you watch the presentation or read the transcript, you'll hear that they already do a bunch of fraud prevention. I'm going to go out on a limb and say Apple is doing much more anti-fraud/fake account work that most others are able to.


I’d imagine there’s a lot of criteria being used. Maybe something like the age of the account, how often it’s used, of it was created from an often used IP address. Whatever it is, it’s probably not in Apple’s interest to disclose it.


You can still ban the underlying iOS account, you just don't get an email address to spam/sell.


Sorry what exactly does having a cloaking address do that makes this a problem?

You get an email address you can contact them through.


Then say that: "we want your email in case there are issues with your content".


But that doesn’t explain why they need your actual email.

The only reason they want a user’s real address is because they want an address the user cant stop them from spamming.

There is literally no other reason.


> The only reason they want a user’s real address is because they want an address the user cant stop them from spamming.

Unsubscribe and report to spam doesn't exist in our world, anymore?


Unsubscribe relies on the sender honouring your choice.

Deleting the anonymous redirect address they’ve been given requires no such cooperation.


Just because an account is real doesn't mean it isn't spam. Most of the forum registration spam is done by real people.

Also, I think most users anyway use a secondary or "throwaway" mail account to sign up to various websites that are not critical to them. This problem is largely already solved.


But what does getting a real email address do in that case?

If you watch the presentation or read the transcript, they explicitly say that they're doing fraud/spam account prevention.

Do you really think you're doing more fraud/spam detection and prevention work than apple?


The email is not the relevant part. Apple sign in requires the purchase of an apple device so it's almost guaranteed to not be a bot. However apple cant know (and shouldn't know btw) if the iphone user uses it to sign up and spam various websites.


Apple already has a lot of anti-spam/fraud accounts because they need to prevent iMessage spam (is your forum going to be subject to the same spam account pressure of a system like iMessage or iCloud?)

But also any argument that the makes spam harder to block also applies to Facebook or google logins - I can’t imagine spammers are using real email addresses with those services.

The only people this changes the experience for are actual users. Spammers already have a huge array of options to get “real email addresses”.




Guidelines | FAQ | Support | API | Security | Lists | Bookmarklet | Legal | Apply to YC | Contact

Search: