Unfortunately that doesn't solve the problem.  Non-bogus email address controlled by malware = access.
Mark
On 4/7/14 4:59 PM, Chris Miller wrote:
From: "Walt Daniels" <wdlists@gmail.com>
To: support@drupal.org
Sent: Monday, April 7, 2014 1:55:59 PM
Subject: Re: [support] Many false applications for accounts

Yes you can prob mail providers and determine if the email is valid, but they may lie. I believe AOL replies yes to any request, at least they used to.
Hi Folks,

Isn't the traditional way to handle this simply send a link to the registrant's email account?  Bogus e-mail; no access.

Chris.