Deleted IDs are created again

Hi,

Previously, I shared the ID with friends to use. After that, I didn't want to share anymore so I deleted that ID. Of course, IDs not created by paid accounts will become public DNS.

A friend tested using the API to create and delete until it successfully created my previously deleted ID. I know the system will automatically generate IDs with 10 characters when more than 100 IDs are created. But if I delete the newly created ID, the ID is always 6 characters. The probability of recreating the correct deleted ID is completely feasible.

As a result, after a few days the previous ID was deleted and was attached to my friend's account. That means now the devices using that ID are being controlled by my friend!

I have some suggestions:
- Improve the API system to avoid abuse to create multiple IDs at the same time.
- Or, increase the number of ID characters when creating too many IDs with the API in a short time, not just increasing the characters when the account has more than 100 created IDs.
- Or, protect the user's ID when someone else uses the ID by predicting the ID character.