Mongodb Cloud Accepted an Email with .con for 7 Years Before Locking My Account
Key topics
Everything worked perfectly for years: sign-up, billing, access, all fine.
Then recently, I was suddenly locked out because “you can not verify your e-mail.”
Of course, .con isn’t even a valid gTLD. Which means MongoDB’s system not only accepted it during registration, but let it function for 7 years without issue.
Now I can’t access my data or account, and support says they can not make changes to the account due to security policy that requires verification with wrong gLTD e-mail.
I understand human errors happen — but allowing an impossible domain for nearly a decade feels like a validation issue worth flagging.
Anyone else seen something similar in production systems?
The author shares their experience of having a MongoDB Cloud account with an invalid email address (.con instead of .com) that was accepted for 7 years before being locked out due to verification issues, sparking a discussion on email validation in production systems.
Snapshot generated from the HN discussion
Discussion Activity
Light discussionFirst comment
12m
Peak period
1
0-1h
Avg / period
1
Key moments
- 01Story posted
Nov 4, 2025 at 12:56 AM EST
2 months ago
Step 01 - 02First comment
Nov 4, 2025 at 1:08 AM EST
12m after posting
Step 02 - 03Peak activity
1 comments in 0-1h
Hottest window of the conversation
Step 03 - 04Latest activity
Nov 4, 2025 at 1:08 AM EST
2 months ago
Step 04
Generating AI Summary...
Analyzing up to 500 comments to identify key contributors and discussion patterns
Want the full context?
Jump to the original sources
Read the primary article or dive into the live Hacker News thread when you're ready.