Kick feature needs to be gaurded against abuse #393
Description
Clients per IP was broken. But even if it works (which it now does), users can circumvent this protection and join with multiple accounts to kick someone.
Kicking requires 0 trust.
Factors that could be used:
- Score (has guessed / drawn at least ones)
- Time connected (been in the lobby roughly as long as others or longer)
- Some type of captcha that shows up when kicking someone?
This would at least prevent botted kicking.
People could still have one IP per tab and complete the challenge multiple times