It was only a matter of time. 4 days, in fact, before I got the first spam account on my instance. Now, this is the most gentle, least annoying spam you could get. But it’s clear that it’s just there to fundamentally advertise a business. I don’t think this is a business setting up shop and using my pod in some legitimate way. It’s presumably under the misguided attempt at getting them a bit higher search engine ranking.
I really don’t care about this one account. It won’t hurt anything. But if I get 10,000 or 20,000 of those, I will care a lot. I’m a bit concerned that someone has gone to the trouble. My instance is so new and so unheard-of that I assume this must be automated somehow. Who would do this by hand on my instance!? My instance is utterly unknown and unimportant.
So the real question is: how do podmins get a sense of who is signing up on their pod and whether they are really legitimate users or just taking up space?
As a podmin, it would be helpful to have a user administration area where I could, for example, see “accounts created in the last 24 hours, 7 days, 30 days” etc. It would be cool if I could spot accounts that have been idle for 7, 30, 60 days. I know there’s an auto deletion mechanism, and it warns people and all that. But that mechanism largely assumes there’s a non-malicious human on the other end. Someone who created an account and forgot about it, lost their password, whatever. These are “malicious” or certainly not cooperative. They don’t care. They’re just posting a single page and presumably never coming back.
How do we spot those and potentially take action sooner than waiting 180 days or a year or whatever for the deletion timer to do its thing?