Unverified trials (a.k.a. the default trial mechanism in TurboActivate) are susceptible to all sorts of fraud because, by their very nature, their unverified. I.e. nothing to verify the date is correct.
The best option if you want absolutely no fraudulent trial behavior is to use "verified trials". That is, they'll have to verify with your (or our) server everytime they want to use your trial version.
There are several methods of going about verified trials. One method is to generate a product key for every trial user. Set a license feature for the product key to 7 days from the time the key was generated. (see: http://wyday.com/limelm/help/license-features/ ). Then require the trial users to activate before they can use your servers. When they connect to your servers do the following:
- pass the product key to your servers
- Get the expires date for their product key using the limeLM web API.
- Verify the date using your server's date/time.
This way you can block fraudulent users without ever looking at their local time. There are other ways to do verified trials, this is just one option.
