Welcome Guest, Not a member yet? Register   Sign In
CodeIgniter Forums Using CodeIgniter General Help Prevent hack sms function
Prevent hack sms function
  • Offline omid_student
    Omid Aghakhani
  • ****
  • Posts: 381
    Threads: 119
    Joined: May 2015
    Reputation: 0
#1
08-22-2019, 04:35 AM

Hi
I have a function in my API that send sms to user's mobile
I try limit it by user IP
But user can change IP and again send sms or hack it
Do you have best way for limit sms for each user?
Reply
  • Offline albertleao
    Senior Member
  • ****
  • Posts: 484
    Threads: 18
    Joined: Oct 2014
    Reputation: 22
#2
08-22-2019, 09:37 AM

Sessions? Store it in a DB? MFA?

We'd need a little more information.
Codeigniter is simply one of the tools you need to learn to be a successful developer. Always add more tools to your coding arsenal!
Reply
  • Offline omid_student
    Omid Aghakhani
  • ****
  • Posts: 381
    Threads: 119
    Joined: May 2015
    Reputation: 0
#3
08-22-2019, 11:54 AM

(08-22-2019, 09:37 AM)albertleao Wrote: Sessions? Store it in a DB? MFA?

We'd need a little more information.

I save user's IP in database and check record count for each IP and in each 5 hour,user can send 5 sms
Reply
  • Offline refik5
    Newbie
  • *
  • Posts: 2
    Threads: 0
    Joined: Sep 2019
    Reputation: 0
#4
09-28-2019, 11:39 AM

Limit send sms by ip and user_id, or registered mobile number or email address.
Reply
  • Offline Digital_Wolf
    Member
  • ***
  • Posts: 85
    Threads: 10
    Joined: Mar 2019
    Reputation: 4
#5
09-28-2019, 12:50 PM

Since the session can be reset, which will lead to re-registration, and the IP can be changed as gloves for example through Tor, I would do a code check via mail + phone and (QR Codes {Google auth or other}) . and for example kept something in localStorage through js as in a case with sessions.
I would change this world, but God doesn't give me the source.
Reply




Theme © iAndrew 2016 - Forum software by © MyBB