need some advice regarding my bitcoin faucet

[odditie]

Hi All,

I have created a faucet as a personal project mainly to test out my php knowledge and help me learn more. I am however stuck at one point and would appreciate some advice. Everytime a user requests funds from the faucet I check that the BitcoinAddress and the IP have not been used in the last 24 Hours, However if someone were to use a proxy and a different address I have no way to check this. so someone to keep doing this every time they change IP if they wanted.

I do have CAPTCHA on my site so this will stop the use of scripts but i'm wondering if anyone has any bright ideas on how I could check?

I have looked into the possibilities of getting hardware ID or something like network mac address, CPU ID, HDD ID etc but I dont see a way of getting this.

Thanks for any help you may provide.

Regards,

odditie

[1715655425]

1715655425

[1715655425]

1715655425

[1715655425]

1715655425

[Martijnvdc]

mac addresses can be changed.

You could make it harder by using a username and password, and requiring people to register via email. That wouldn't solve your problem, but it would help make it not worth their time.
You could also block known TOR exit nodes.

[hexafraction]

I have looked into the possibilities of getting hardware ID or something like network mac address, CPU ID, HDD ID etc but I dont see a way of getting this.

None of these are possible to obtain over a network (MAC address is only transmitted on layer 2), and the rest require a plugin that users aren't bound to trust.

[jokerboy]

use cookies

[Kprawn]

use cookies

cookies can be disabled 

[sherbyspark]

Hi All,

I have created a faucet as a personal project mainly to test out my php knowledge and help me learn more. I am however stuck at one point and would appreciate some advice. Everytime a user requests funds from the faucet I check that the BitcoinAddress and the IP have not been used in the last 24 Hours, However if someone were to use a proxy and a different address I have no way to check this. so someone to keep doing this every time they change IP if they wanted.

I do have CAPTCHA on my site so this will stop the use of scripts but i'm wondering if anyone has any bright ideas on how I could check?

I have looked into the possibilities of getting hardware ID or something like network mac address, CPU ID, HDD ID etc but I dont see a way of getting this.

Thanks for any help you may provide.

Regards,

odditie

If the faucet is giving out like 500-1000 satoshis, then people repeatedly changing browsers or TOR, would give up soon as it wont be profitable for them over time.
So it should be fine to continue with the current method of just having CAPTCHAS.

[548845]

mac addresses can be changed.

You could make it harder by using a username and password, and requiring people to register via email. That wouldn't solve your problem, but it would help make it not worth their time.
You could also block known TOR exit nodes.

^^^ This.

There is also a websites that provides you with a txt file for all known proxies so that you can use.
This is one: http://proxylist.hidemyass.com/

So basically block proxies.