How to validate if the E-Mail Address is existing

2019-07-25 19:24发布

how do i validate Existing E-Mail Address.

in a Registration system, when a user enter a Email address it checks if the Email address is existing or not in Ymail/Gmail.

i already have a running domain(for Practice).

You have my regards.

4条回答
Melony?
2楼-- · 2019-07-25 19:54

SMTP provides VRFY and EXPN verbs to check if an account or mailing list exists. However, most server admins disable these verbs from their mail configuration to prevent hackers from exploiting user lists. Gmail and Yahoo are said to have VRFY disabled.

Another option you can try for these servers is emailing the user with a link to confirm their email address. Granted, it is not as sexy as realtime email verification, but it is more secure for all parties.

查看更多
兄弟一词,经得起流年.
3楼-- · 2019-07-25 19:54

It is practically not possible to validate email address with growing number of spams.

These days people send a mail to the email address entered by user to complete the registration or activate the account. You can probably do that and is a much safer way to do. You can find a number of resources online to implement this functionality.

查看更多
Bombasti
4楼-- · 2019-07-25 20:01

Most registration systems validate an email address by sending an email to it with a uniquely encoded URL in it and requiring the user to go get that email and click on the link. When your server sees that the link has been clicked on the email address is know to be accessed by you.

Here's a basic flowchart for how it works:

  1. User goes to your website
  2. User commences registration and fills in their email address
  3. Server checks to see if email address is in a legal and proper form and is not already registered
  4. If the rest of the user's registration looks good and then email address looks legal, the server creates an account in your system and puts in the "unverified" state.
  5. Then, a code is generated that corresponds to that specific user. That code is put onto an URL and that URL is put into an email which is sent to the email address the user entered.
  6. The user receives the email with instructions to click on the enclosed link.
  7. User retrieves email and clicks on the link.
  8. Your server receives web request from that link. It parses out the code from the URL and checks to see if that code matches an account that is in the "unverified" state. If so, and the account has not expired from too much time elapsing since the email was sent, then the account is put into the "verified" state and is ready for use.

The basic idea of this system is that if you can retrieve an email sent to that email address then the email address must be a valid and working email address and you, the user, must be able to access that email address (it's not just some random email address you made up).

查看更多
ゆ 、 Hurt°
5楼-- · 2019-07-25 20:12

Back in the day, you could easily validate email addresses. Then the spammers came along. Now the only way you can confirm the existence of an email address is by trying to send something to it and checking for bounces. And even then, the lack of a bounce doesn't mean it exists - it could simply have been silently deleted, ignored, spam filtered into oblivion, etc...

Basically, what you want is not possible - any such system would simply help spammers hammer your box with more russian brides popping penis pills while wearing fake rolexes.

查看更多
登录 后发表回答