To avoid some of the risk of accidentally creating a new stream by fat-fingering the name of an existing stream, we could simple not auto-create a stream but instead reject (or send to the inbox) emails with subjects that can't be matched to a stream.
A variant on this could be the email is rejects but the user receives an email they can reply to either fix the subject or confirm that a new stream is to be created.