On Wed, Sep 23, 2009 at 4:14 PM, Paul W. Frields stickster@gmail.com wrote:
Looks like the user "Georgia10" just inserted spam on that page. Aiyiyi.
What's our procedure for deleting/disabling a rogue FAS account? It appears that the account in question was just created today, probably for the express purpose of spamming the wiki and then disappearing. I would like to think that only a human could create an accounts, there's a variety of steps involved. But maybe some sort of CAPTCHA on the signup page could reduce this in the future?
On 09/23/2009 01:34 PM, Jon Stanley wrote:
On Wed, Sep 23, 2009 at 4:14 PM, Paul W. Frields stickster@gmail.com wrote:
Looks like the user "Georgia10" just inserted spam on that page. Aiyiyi.
What's our procedure for deleting/disabling a rogue FAS account? It appears that the account in question was just created today, probably for the express purpose of spamming the wiki and then disappearing. I would like to think that only a human could create an accounts, there's a variety of steps involved. But maybe some sort of CAPTCHA on the signup page could reduce this in the future?
We added a captcha last week so this is definitely a person or smarter than average bot:
https://admin.fedoraproject.org/accounts/user/new
-Toshio
On Wed, Sep 23, 2009 at 01:40:55PM -0700, Toshio Kuratomi wrote:
On 09/23/2009 01:34 PM, Jon Stanley wrote:
On Wed, Sep 23, 2009 at 4:14 PM, Paul W. Frields stickster@gmail.com wrote:
Looks like the user "Georgia10" just inserted spam on that page. Aiyiyi.
What's our procedure for deleting/disabling a rogue FAS account? It appears that the account in question was just created today, probably for the express purpose of spamming the wiki and then disappearing. I would like to think that only a human could create an accounts, there's a variety of steps involved. But maybe some sort of CAPTCHA on the signup page could reduce this in the future?
We added a captcha last week so this is definitely a person or smarter than average bot:
Note that the change, a website advertisement, was actually made in context, which I don't think would be as likely with a bot. Most of the bot vandalism we see is a mass replacement of text.
On Wed, 23 Sep 2009, Jon Stanley wrote:
On Wed, Sep 23, 2009 at 4:14 PM, Paul W. Frields stickster@gmail.com wrote:
Looks like the user "Georgia10" just inserted spam on that page. Aiyiyi.
What's our procedure for deleting/disabling a rogue FAS account? It appears that the account in question was just created today, probably for the express purpose of spamming the wiki and then disappearing. I would like to think that only a human could create an accounts, there's a variety of steps involved. But maybe some sort of CAPTCHA on the signup page could reduce this in the future?
Well,
http://fedoraproject.org/wiki/Infrastructure/AccountSystem#Account_Terminati...
Clearly states "malicious usage" as grounds for termination. What was the page in question?
-Mike
On Wed, Sep 23, 2009 at 04:22:52PM -0500, Mike McGrath wrote:
On Wed, 23 Sep 2009, Jon Stanley wrote:
On Wed, Sep 23, 2009 at 4:14 PM, Paul W. Frields stickster@gmail.com wrote:
Looks like the user "Georgia10" just inserted spam on that page. Aiyiyi.
What's our procedure for deleting/disabling a rogue FAS account? It appears that the account in question was just created today, probably for the express purpose of spamming the wiki and then disappearing. I would like to think that only a human could create an accounts, there's a variety of steps involved. But maybe some sort of CAPTCHA on the signup page could reduce this in the future?
Well,
http://fedoraproject.org/wiki/Infrastructure/AccountSystem#Account_Terminati...
Clearly states "malicious usage" as grounds for termination. What was the page in question?
The OP was snipped out:
https://fedoraproject.org/w/index.php?title=FUDCon:Berlin_2009&action=hi...
On Wed, 23 Sep 2009, Paul W. Frields wrote:
On Wed, Sep 23, 2009 at 04:22:52PM -0500, Mike McGrath wrote:
On Wed, 23 Sep 2009, Jon Stanley wrote:
On Wed, Sep 23, 2009 at 4:14 PM, Paul W. Frields stickster@gmail.com wrote:
Looks like the user "Georgia10" just inserted spam on that page. Aiyiyi.
What's our procedure for deleting/disabling a rogue FAS account? It appears that the account in question was just created today, probably for the express purpose of spamming the wiki and then disappearing. I would like to think that only a human could create an accounts, there's a variety of steps involved. But maybe some sort of CAPTCHA on the signup page could reduce this in the future?
Well,
http://fedoraproject.org/wiki/Infrastructure/AccountSystem#Account_Terminati...
Clearly states "malicious usage" as grounds for termination. What was the page in question?
The OP was snipped out:
https://fedoraproject.org/w/index.php?title=FUDCon:Berlin_2009&action=hi...
It won't help with users with actual accounts but I've enabled a basic captcha for anonymous edits.
-Mike
On Wed, Sep 23, 2009 at 09:17:32PM -0500, Mike McGrath wrote:
It won't help with users with actual accounts but I've enabled a basic captcha for anonymous edits.
+1 Thanks.
- Karsten
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1
Problem though. The math CAPTCHA is extremely easy to solve. Darren VanBuren onekopaka@gmail.com ==================== http://theoks.net/
On Sep 23, 2009, at 7:22 PM, Karsten Wade wrote:
On Wed, Sep 23, 2009 at 09:17:32PM -0500, Mike McGrath wrote:
It won't help with users with actual accounts but I've enabled a basic captcha for anonymous edits.
+1 Thanks.
- Karsten
-- Karsten 'quaid' Wade, Community Gardener http://quaid.fedorapeople.org AD0E0C41 _______________________________________________ Fedora-infrastructure-list mailing list Fedora-infrastructure-list@redhat.com https://www.redhat.com/mailman/listinfo/fedora-infrastructure-list
On Wed, 23 Sep 2009, Darren VanBuren wrote:
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1
Problem though. The math CAPTCHA is extremely easy to solve.
Yep, very true. But the blind will be able to have it read to them via the same software they're reading the page, and AFAIK it's not a very used capthca so spam should less. It's worked well for smolts.org.
-Mike
Darren VanBuren onekopaka@gmail.com ==================== http://theoks.net/
On Sep 23, 2009, at 7:22 PM, Karsten Wade wrote:
On Wed, Sep 23, 2009 at 09:17:32PM -0500, Mike McGrath wrote:
It won't help with users with actual accounts but I've enabled a basic captcha for anonymous edits.
+1 Thanks.
- Karsten
-- Karsten 'quaid' Wade, Community Gardener http://quaid.fedorapeople.org AD0E0C41 _______________________________________________ Fedora-infrastructure-list mailing list Fedora-infrastructure-list@redhat.com https://www.redhat.com/mailman/listinfo/fedora-infrastructure-list
-----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.9 (Darwin)
iEYEARECAAYFAkq62FEACgkQBkMMSWb0YpbLuACg3nvAIK2wpZrDYQvuEBmM6IoW ktcAnRCdzsSptos+nsWb3E8IoSFhLDwm =78Ep -----END PGP SIGNATURE-----
Fedora-infrastructure-list mailing list Fedora-infrastructure-list@redhat.com https://www.redhat.com/mailman/listinfo/fedora-infrastructure-list
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1
But it's very common. Wikipedia uses it when there's a new link in an edit from a non-confirmed user.
Darren VanBuren onekopaka@gmail.com ==================== http://theoks.net/
On Sep 23, 2009, at 7:28 PM, Mike McGrath wrote:
On Wed, 23 Sep 2009, Darren VanBuren wrote:
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1
Problem though. The math CAPTCHA is extremely easy to solve.
Yep, very true. But the blind will be able to have it read to them via the same software they're reading the page, and AFAIK it's not a very used capthca so spam should less. It's worked well for smolts.org.
-Mike
Darren VanBuren onekopaka@gmail.com ==================== http://theoks.net/
On Sep 23, 2009, at 7:22 PM, Karsten Wade wrote:
On Wed, Sep 23, 2009 at 09:17:32PM -0500, Mike McGrath wrote:
It won't help with users with actual accounts but I've enabled a basic captcha for anonymous edits.
+1 Thanks.
- Karsten
-- Karsten 'quaid' Wade, Community Gardener http://quaid.fedorapeople.org AD0E0C41 _______________________________________________ Fedora-infrastructure-list mailing list Fedora-infrastructure-list@redhat.com https://www.redhat.com/mailman/listinfo/fedora-infrastructure-list
-----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.9 (Darwin)
iEYEARECAAYFAkq62FEACgkQBkMMSWb0YpbLuACg3nvAIK2wpZrDYQvuEBmM6IoW ktcAnRCdzsSptos+nsWb3E8IoSFhLDwm =78Ep -----END PGP SIGNATURE-----
Fedora-infrastructure-list mailing list Fedora-infrastructure-list@redhat.com https://www.redhat.com/mailman/listinfo/fedora-infrastructure-list
Fedora-infrastructure-list mailing list Fedora-infrastructure-list@redhat.com https://www.redhat.com/mailman/listinfo/fedora-infrastructure-list
On Wed, 23 Sep 2009, Darren VanBuren wrote:
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1
But it's very common. Wikipedia uses it when there's a new link in an edit from a non-confirmed user.
Just because another site is using it doesn't make it common, additionally it doesn't mean spammers are targeting it. And, like I said, it's worked very well for smolts.org. I suspect it will continue to do so for the fp wiki.
-Mike
Darren VanBuren onekopaka@gmail.com ==================== http://theoks.net/
On Sep 23, 2009, at 7:28 PM, Mike McGrath wrote:
On Wed, 23 Sep 2009, Darren VanBuren wrote:
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1
Problem though. The math CAPTCHA is extremely easy to solve.
Yep, very true. But the blind will be able to have it read to them via the same software they're reading the page, and AFAIK it's not a very used capthca so spam should less. It's worked well for smolts.org.
-Mike
Darren VanBuren onekopaka@gmail.com ==================== http://theoks.net/
On Sep 23, 2009, at 7:22 PM, Karsten Wade wrote:
On Wed, Sep 23, 2009 at 09:17:32PM -0500, Mike McGrath wrote:
It won't help with users with actual accounts but I've enabled a basic captcha for anonymous edits.
+1 Thanks.
- Karsten
-- Karsten 'quaid' Wade, Community Gardener http://quaid.fedorapeople.org AD0E0C41 _______________________________________________ Fedora-infrastructure-list mailing list Fedora-infrastructure-list@redhat.com https://www.redhat.com/mailman/listinfo/fedora-infrastructure-list
-----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.9 (Darwin)
iEYEARECAAYFAkq62FEACgkQBkMMSWb0YpbLuACg3nvAIK2wpZrDYQvuEBmM6IoW ktcAnRCdzsSptos+nsWb3E8IoSFhLDwm =78Ep -----END PGP SIGNATURE-----
Fedora-infrastructure-list mailing list Fedora-infrastructure-list@redhat.com https://www.redhat.com/mailman/listinfo/fedora-infrastructure-list
Fedora-infrastructure-list mailing list Fedora-infrastructure-list@redhat.com https://www.redhat.com/mailman/listinfo/fedora-infrastructure-list
-----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.9 (Darwin)
iEYEARECAAYFAkq62cAACgkQBkMMSWb0YpZk1QCcDxUt7+rodKfcb22s7KHo9rlk 4SMAnRUkHk485bHFdRRDnBnhjp+G7Uuu =cd7n -----END PGP SIGNATURE-----
Fedora-infrastructure-list mailing list Fedora-infrastructure-list@redhat.com https://www.redhat.com/mailman/listinfo/fedora-infrastructure-list
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1
I agree that we might as well keep it for the visually impaired.
Darren VanBuren onekopaka@gmail.com ==================== http://theoks.net/
On Sep 23, 2009, at 7:35 PM, Mike McGrath wrote:
On Wed, 23 Sep 2009, Darren VanBuren wrote:
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1
But it's very common. Wikipedia uses it when there's a new link in an edit from a non-confirmed user.
Just because another site is using it doesn't make it common, additionally it doesn't mean spammers are targeting it. And, like I said, it's worked very well for smolts.org. I suspect it will continue to do so for the fp wiki.
-Mike
Darren VanBuren onekopaka@gmail.com ==================== http://theoks.net/
On Sep 23, 2009, at 7:28 PM, Mike McGrath wrote:
On Wed, 23 Sep 2009, Darren VanBuren wrote:
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1
Problem though. The math CAPTCHA is extremely easy to solve.
Yep, very true. But the blind will be able to have it read to them via the same software they're reading the page, and AFAIK it's not a very used capthca so spam should less. It's worked well for smolts.org.
-Mike
Darren VanBuren onekopaka@gmail.com ==================== http://theoks.net/
On Sep 23, 2009, at 7:22 PM, Karsten Wade wrote:
On Wed, Sep 23, 2009 at 09:17:32PM -0500, Mike McGrath wrote:
It won't help with users with actual accounts but I've enabled a basic captcha for anonymous edits.
+1 Thanks.
- Karsten
-- Karsten 'quaid' Wade, Community Gardener http://quaid.fedorapeople.org AD0E0C41 _______________________________________________ Fedora-infrastructure-list mailing list Fedora-infrastructure-list@redhat.com https://www.redhat.com/mailman/listinfo/fedora-infrastructure-list
-----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.9 (Darwin)
iEYEARECAAYFAkq62FEACgkQBkMMSWb0YpbLuACg3nvAIK2wpZrDYQvuEBmM6IoW ktcAnRCdzsSptos+nsWb3E8IoSFhLDwm =78Ep -----END PGP SIGNATURE-----
Fedora-infrastructure-list mailing list Fedora-infrastructure-list@redhat.com https://www.redhat.com/mailman/listinfo/fedora-infrastructure-list
Fedora-infrastructure-list mailing list Fedora-infrastructure-list@redhat.com https://www.redhat.com/mailman/listinfo/fedora-infrastructure-list
-----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.9 (Darwin)
iEYEARECAAYFAkq62cAACgkQBkMMSWb0YpZk1QCcDxUt7+rodKfcb22s7KHo9rlk 4SMAnRUkHk485bHFdRRDnBnhjp+G7Uuu =cd7n -----END PGP SIGNATURE-----
Fedora-infrastructure-list mailing list Fedora-infrastructure-list@redhat.com https://www.redhat.com/mailman/listinfo/fedora-infrastructure-list
Fedora-infrastructure-list mailing list Fedora-infrastructure-list@redhat.com https://www.redhat.com/mailman/listinfo/fedora-infrastructure-list
On Wed, Sep 23, 2009 at 04:34:29PM -0400, Jon Stanley wrote:
What's our procedure for deleting/disabling a rogue FAS account? It appears that the account in question was just created today, probably for the express purpose of spamming the wiki and then disappearing. I would like to think that only a human could create an accounts, there's a variety of steps involved. But maybe some sort of CAPTCHA on the signup page could reduce this in the future?
You can block accounts from editing pages indefinitely.
infrastructure@lists.fedoraproject.org