I definitely want to allow the facebook login but when I turned it on (and thus had to turn off user account request queuing) I went from 1 spam sign up per day to about 10.
I've got GL 1.8.2 and latest captcha with the slider. So not sure if they are bots getting through or just human spammers. Note they aren't using the facebook login, they've just pounced on not having to be queued (presumably one got through and passes the info on or does multiple accounts themselves). A lot are email addresses of the form AbSurname@yahoo.com (i.e. capital, lower case, Surname) but I've seen plenty of other domains over time.
Quote by: Laugh
You should add a feature request for this so we don't forget in the bug tracker: http://project.geeklog.net/
I had a look and my reading of it is that you've already requested this yourself (but no one assigned). At least, to send oauth requests to the queue, so presumably that means allowing the queue and oauth to coexist.
I'll trial this for a few more days but looks like it's just letting way too many spammers through. Or is there something else I should also employ against them?