Joe's Random Ramblings

Since I last wrote about Facebook's lack of an abuse address, there seems to have been a significant development.
Last Friday, yet another idiot signed up with the Brazilian Facebook site, and immediately went to send out friend requests to some 80 people. Facebook stopped access to that account on Sunday, as has become obvious by the fact that the person couldn't log in to his account anymore and asked for a password reset (all of this came to my domain, of course, so his password never got reset.)

Olá Gabriell,
Você solicitou a redefinição da sua senha do Facebook recentemente. Entre aqui para redefini-la: https://www.facebook.com/recover/code?[redacted]
Ou, você pode inserir o código de redefinição da senha a seguir: [redacted]

Translation via Google Translate:

Hello Gabriell,
You asked to reset your Facebook password lately. Go here to reset it: https://www.facebook.com/recover/code?[redacted]
Or, you can enter the password reset code below: [redacted]

So, being locked out of his account, this idiot creates a new FB account today.
This time, Facebook apparently required him to confirm registration before allowing him in:

Olá Gabriell,
Para concluir o processo de cadastro, clique no seguinte link:
http://s.fb.com/[redacted]
Pode ser que você seja solicitado a inserir este código de confirmação: [redacted]

Translation:

Hello Gabriell,
To complete the registration process, please click the following link:
http://s.fb.com/[redacted]
You may be prompted to enter this verification code: [redacted]

I have no idea why these idiots in Brazil think my domain is their playground...

Anyway, the barrage of friend emails for the fake account that my Procmail recipe dumped into FB's mailboxes seems to have had some effect.

Somebody may ask, why not just report the person through the Facebook website? The problem is that with 1 billion or so Facebook accounts, there are usually several people with the same name, sometimes 10 or more. Which one is the person with the fake account? That's why a way to report an email address is required, and a real abuse@ address would provide that, since the emails in question, including email addresses, can be reported that way.
I really hope that there are some people with a clue about the Internet employed at FB who can push for FB following established Internet practice.

Update: What I now do is to change the password on these accounts (the guys gave me the implicit permission to do that by using my email), and then I deactivate the accounts... Since I started that, there hasn't been any new such fake Facebook account with email addresses in my domain...