Page MenuHomePhabricator

Current interface-editor group config doesn't comply with privacy policy
Closed, ResolvedPublic


Currently's interface-editor group has the following userrights:
which are oversight-level rights. As soon as a request to suppress some abuselog's entry will come, this config will break privacy policy by giving access to suppressed data to non-identified users.

Event Timeline

Vituzzu raised the priority of this task from to Needs Triage.
Vituzzu updated the task description. (Show Details)
Vituzzu added subscribers: Vituzzu, Snowolf, MarcoAurelio and 2 others.

I checked back through the history of that permission earlier, unfortunately it seems to predate the migration of mediawiki-config to the public git repository, and the history of the old private SVN repository was lost.

The matter was originally discussed on T34048 it seems. The original requested is already cc'ed on this bug.

I left this note on a gerrit change earlier but, yes, this is a suppression level right and it should be removed. I see how it happened (just adding all of the abusefilter rights and it's not well documented) but that's how it's been used (essentially deleting logs which contain private data and being able to view those deleted logs).

Change 235960 had a related patch set uploaded (by Alex Monk):
Revoke suppression-level rights from interface editors on hewiki

Change 235960 merged by jenkins-bot:
Revoke suppression-level rights from interface editors on hewiki

Krenair claimed this task.
sbassett triaged this task as Medium priority.Oct 16 2019, 5:35 PM
sbassett moved this task from Intake to Done on the Privacy board.