To mitigate scripted abuse of temp accounts, we should consider showing a CAPTCHA to edits that would result in a temporary account creation, in certain circumstances. Some possible scenarios:
- the user's IP is known to iPoid-Service
- the user's IP is linked with X number of temp account creations in the last Y minutes
- the user's IP is linked with X number of temp account edits in the last Y minutes
We could also consider a config that would allow for requiring a captcha on temp account creation for X% of requests