There is an “only one vote” option in the settings that only allows users to vote once per post, and there’s also an option to use cookies to make it harder to vote more than once.
Thread Starter
David
(@dmillerweb)
Thanks for that answer. I assume they do this by recording IP addresses, and not by session? (If it were by session, the user could log out, then log back in and vote again.)
I’m not sure. But I did test it by logging out and back in and it wouldn’t let me change my response. Hope that helps…
The option uses cookies and is surely not secure against somebody with bad intent, since they can just delete the cookie and reload the page. This plugin wants to make it easy to get the users reactions and easy and secure don’t work together. If I would save the IP, most users could reconnect their internet connection and get a new IP. The only secure way is letting them log in, but then you wouldn’t get any reactions, since 99,9% wouldn’t bother.
Thread Starter
David
(@dmillerweb)
Good info. Thanks. Seems like you’ve found the best available compromise between ease and security.
