A member of our team has been making updates to one of our sites and he implemented a feature (on the registration form) that checks if an email address is still available for use. But he's nervous if it's secure to show a user if an email address is already taken.
Could it be a security risk for members? How should we defend it against bots looking for email addresses?
November 22, 2013 1:53 PM