Changes to GitLab Sign-Up policy

[Ondřej Surý]

Hey all,

we had a massive Spam surge over couple past days, so we had to tighten the GitLab Sign-Up policy,
so we don't waste our time on deleting spam from the issues.

There's now couple of domains that are on denylist for signups:

- hotmail.com <http://hotmail.com/>
- outlook.com <http://outlook.com/>
- gmail.com <http://gmail.com/>

Those are the domains mostly used by 99% of the spam users [1].

If you absolutely need to create an account from these domains, talk to us, we can create the account
for you.

Also the same restrictions as before apply - any account created must have 2fa or create an issue within
one day or it will be banned and then deleted.  Any bio will be deleted in each Victor the GitLab Cleaner[2]
run in the CI in the initial period to avoid a Bio Spam. Unfortunately with these rules, the Spammers were
able to keep their accounts by creating Spam Issues, so we had to implement additional measures.

I understand this might complicate things for some of you, but a) there were only couple of legitimate accounts
with gmail/hotmail/outlook domain in the past, b) it's better if you use your real address and real name if you
want our help[3].

1. I have also enabled the qq.com <http://qq.com/> (and any domain hosted by their SMTP servers) as their implementation
of DMARC is broken and all email from GitLab bounces.

2. http://gitlab.isc.org/ondrej/gitlab-victor/edit#js-general-project-settings

3. https://berthub.eu/articles/posts/anonymous-help/

Ondrej
--
Ondřej Surý (He/Him)
ondrej at isc.org

My working hours and your working hours may be different. Please do not feel obligated to reply outside your normal working hours.