diff --git a/common_config.php b/common_config.php
index 4c4c7be..87ac2ae 100644
--- a/common_config.php
+++ b/common_config.php
@@ -12,6 +12,7 @@ const DBNAME = 'postfix'; // Database
const DBVERSION = 1; // Database schema version
const PERSISTENT = true; // persistent database connection
const CAPTCHA_DIFFICULTY = 1; // captcha difficulty from 0 to 3
+const RESERVED_USERNAMES = ['about', 'abuse', 'admin', 'administrator', 'billing', 'contact', 'daemon', 'ftp', 'help', 'hostmaster', 'info', 'legal', 'list', 'list-request', 'lists', 'maildaemon', 'mailerdaemon', 'mailer-daemon', 'marketing', 'media', 'news', 'newsletter', 'nobody', 'noc', 'noreply', 'no-reply', 'notification', 'notifications', 'notify', 'offer', 'offers', 'office', 'official', 'order', 'orders', 'phish', 'phishing', 'postmaster', 'root', 'sale', 'sales', 'security', 'service', 'services', 'shop', 'shopping', 'spam', 'staff', 'support', 'survey', 'system', 'team', 'teams', 'unsbubscribe', 'uucp', 'usenet', 'user', 'username', 'users', 'web', 'webmail', 'webmaster', 'webmasters', 'welcome', 'www']; // list of reserved usernames that can mot be used on public registration
require_once( 'vendor/autoload.php' );
diff --git a/www/register.php b/www/register.php
index f5e57e1..5c2b609 100644
--- a/www/register.php
+++ b/www/register.php
@@ -47,7 +47,11 @@ if ( isset( $_POST[ 'user' ] ) ) {
if ( ! $validator->isValid( "$user@$domain", new NoRFCWarningsValidation() ) ) {
$ok = false;
$msg .= 'The email address you specified is not valid
';
+ } elseif(in_array($user, RESERVED_USERNAMES, true)){
+ $ok = false;
+ $msg .= 'The user name you specified is reserved
';
}
+
}
}
if ( $ok ) {