Page MenuHomePhabricator
Create Task
Maniphest T120734

Epic ⚡️ Improve MediaWiki's blocking tools
Closed, ResolvedPublic
Actions

Description

Our blocking tools suck. It is a trivial matter to defeat blocks, and any vandal worth his salt can do it in his sleep. (User:Philippe). Anyone who works a sockpuppet investigation page or is a victim of repeated on-wiki harassment can attest to this. Block evasion doesn't have to be deliberate -- in some parts of the world, users can be assigned a different IP address by their ISP for every edit they make. We effectively have no measures against these users.

The aim here is threefold -- to make it more difficult to evade blocks, make it easier for us to identify and deal with potential sockpuppets as soon as possible-- ideally before they start editing -- and keep collateral damage at a minimum.
This proposal has multiple facets:

Improved blocking tools may be assigned to the Checkuser group initially to get a feel for how much collateral damage they cause. This will ideally reduce the burden of cleaning up after spammers, vandals and long term abusers, reduce the amount of on-wiki harassment of the type referred to in the diff above and will benefit all good faith editors of any MediaWiki installation. MER-C (talk) 12:06, 8 November 2015 (UTC)

This card tracks a proposal from the 2015 Community Wishlist Survey: https://meta.wikimedia.org/wiki/2015_Community_Wishlist_Survey
This proposal received 33 support votes, and was ranked #29 out of 107 proposals. https://meta.wikimedia.org/wiki/2015_Community_Wishlist_Survey/Moderation_and_admin_tools#Improve_MediaWiki.27s_blocking_tools

Related Objects
Search...

StatusSubtypeAssignedTask
 Resolved TBolligerT120734 Epic ⚡️ Improve MediaWiki's blocking tools
 OpenNoneT146837 Add ability to search by user agent from CheckUser interface
 OpenNoneT147894 Create index for agent_id columns in the CheckUser result tables
 OpenNoneT361139 Normalise the user agent column in CheckUser result tables
 OpenNoneT361208 Remove agent columns from CheckUser result tables
 OpenNoneT361206 Stop writing old for user agent schema migration on WMF wikis
 OpenNoneT361205 Stop writing old for user agent schema migration
 OpenNoneT361199 Set user agent schema migration config to read new on WMF wikis
 OpenNoneT361201 Set user agent schema migration config to read new in extension.json
 OpenNoneT361192 Read user agent strings from the cu_useragent table in Special:CheckUser
 OpenNoneT361193 Read user agent strings from the cu_useragent table in the CheckUser API
 OpenNoneT361195 Read user agent strings from the cu_useragent table in Special:Investigate
 OpenNoneT361198 Create a maintenance script to populate the cu_useragent table and agent_id columns with values from the agent columns
 OpenNoneT361196 Write to the cu_useragent table and agent_id columns on WMF wikis
 OpenNoneT361197 Write to the cu_useragent table and agent_id columns on by default in extension.json
 OpenNoneT361174 Write to agent_id columns in the CheckUserInsert service when migration configuration allows it
 OpenNoneT361172 Purge rows from cu_useragent
 OpenNoneT361173 Add schema migration config for cu_useragent table
 ResolvedDreamy_JazzT361140 Add user agent ID column to each CheckUser result table
 OpenNoneT361210 FYI: Changes to the cuc_agent column in the cu_changes table
 ResolvedDreamy_JazzT361928 Update mediawiki.org pages for schema changes made by adding the cu_useragent table
 ResolvedDreamy_JazzT359312 Create cu_useragent table
 ResolvedMarosteguiT361631 Unable to create table cu_useragent on labtestwiki
 DeclinedNoneT328289 update labtestwiki user and password
 OpenNoneT369308 Decommission clouddb2002-dev.codfw.wmnet
 OpenNoneT378260 Retire labtestwiki
 ResolvedMarosteguiT361673 Filter cu_useragent on sanitarium
 Resolved DannyHT147895 Investigation: Test searching for user agents
 ResolvedMusikAnimalT5233 Send a cookie with each block
 ResolvedNiharikaT146230 Set-up EventLogging to see how often blocked users are blocked via cookie
 ResolvedSamwilsonT147610 Add feature flag for block cookie behavior
 ResolvedSamwilsonT153527 Flaky unit test "UserTest::testAutoblockCookieInfiniteExpiry"
 ResolvedkaldariT151097 Switching $wgCookieSetOnAutoblock from true to false can cause fatal error
 ResolvedkaldariT150991 Test cookie blocking on Test Wikipedia
 ResolvedNiharikaT149330 Investigation: Adding a check for the block cookie to the account creation process
 ResolvedSamwilsonT150888 Document $wgCookieSetOnAutoblock on mediawiki.org
 ResolvedMusikAnimalT152076 Enable and test cookie blocking on English Wikipedia
 OpenNoneT152953 $wgCookieSetOnAutoblock should perhaps spread autoblocks when the cookie matches
 ResolvedSamwilsonT153347 Block cookies should expire after 24 hours or the length of the actual block, whichever is shorter
 ResolvedSamwilsonT152952 CookieSetOnAutoblock for an infinite block would block the computer forever, add expiration to LocalStorage entry
 ResolvedSamwilsonT152951 CookieSetOnAutoblock doesn't verify cookie before using it allowing an attacker to enumerate revdeleted users
 ResolvedMusikAnimalT158129 Test cookie blocking on Test Wikipedia
 OpenNoneT21796 Checkuser watchlist feature
 ResolveddmazaT188160 Investigation: Block by combination of hashed identifiable information (e.g. user agent, screen resolution, etc.) in addition to IP range.
ResolveddmazaT152462 Add cookie when blocking anonymous users
 InvaliddmazaT191542 Implement event logging for IP cookie blocks to make sure it's working reasonably
 ResolvedNoneT192016 Release anon cookie blocking on test.wikipedia.org
 ResolveddbarrattT192017 Enable anon cookie blocking on all Wikimedia wikis
 ResolveddmazaT195930 Enable set cookie with IP/IP-Range blocks when blocking logged-out users
 ResolveddmazaT196121 Enable set cookie with IP/IP-Range blocks when blocking logged-out users on itwiki
 DeclinedNoneT190889 Add regex functionality to User Agent + IP blocks
 OpenNoneT100070 Allow CheckUsers to set User agent (UA)-based IP Blocks

Event Timeline

DannyH created this task.Dec 7 2015, 10:50 PM
DannyH raised the priority of this task from to Needs Triage.
DannyH updated the task description. (Show Details)
DannyH added a project: Community-Wishlist-Survey-2015.
DannyH moved this task to Wishlist 51-on on the Community-Wishlist-Survey-2015 board.
DannyH subscribed.
Restricted Application added subscribers: StudiesWorld, Aklapper. · View Herald TranscriptDec 7 2015, 10:50 PM
DannyH updated the task description. (Show Details)Dec 7 2015, 10:51 PM
DannyH set Security to None.
Reedy added a project: MediaWiki-User-management.Dec 8 2015, 8:43 AM
JEumerus subscribed.Dec 8 2015, 8:53 PM
Deskana subscribed.Dec 11 2015, 5:59 AM

T100070: Allow CheckUsers to set User agent (UA)-based IP Blocks was filed recently, and may want to be added to this task.

DannyH moved this task from Wishlist 51-on to Wishlist 21-50 on the Community-Wishlist-Survey-2015 board.Dec 15 2015, 8:33 PM
JEumerus updated the task description. (Show Details)Jan 8 2016, 8:56 PM
He7d3r subscribed.Jan 9 2016, 1:42 AM
Glaisher subscribed.Jan 21 2016, 5:18 AM
Aklapper added a comment.Jan 21 2016, 2:51 PM
IMPORTANT: If you are a community developer interested in working on this task: The Wikimedia Hackathon 2016 (Jerusalem, March 31 - April 3) focuses on #Community-Wishlist-Survey projects. There is some budget for sponsoring volunteer developers. THE DEADLINE TO REQUEST TRAVEL SPONSORSHIP IS TODAY, JANUARY 21. Exceptions can be made for developers focusing on Community Wishlist projects until the end of Sunday 24, but not beyond. If you or someone you know is interested, please REGISTER NOW.
ZhouZ subscribed.Feb 5 2016, 10:34 PM
DannyH updated the task description. (Show Details)Feb 5 2016, 11:59 PM
CKoerner_WMF subscribed.Mar 24 2016, 3:31 PM
Quiddity updated the task description. (Show Details)May 2 2016, 6:03 AM
Quiddity updated the task description. (Show Details)Jun 12 2016, 8:35 PM
DannyH added a subtask: T146837: Add ability to search by user agent from CheckUser interface.Oct 3 2016, 6:17 PM
DannyH added a subtask: T5233: Send a cookie with each block.

A heads-up for folks on this ticket:

Community Tech is currently working on T5233: Send a cookie with each block, and we're discussing T146837: Add ability to search by user agent from CheckUser interface. We'll be doing more blocking tools work over the next couple months.

Stryn subscribed.Oct 3 2016, 7:06 PM
JJMC89 subscribed.Oct 4 2016, 2:39 AM
MarcoAurelio subscribed.Oct 4 2016, 8:59 PM
Aklapper added a comment.Oct 5 2016, 12:26 PM

This task is part of the 2015 Community Wishlist.
As items on the 2015 wishlist can be reproposed for the 2016 Community Wishlist, I would like to point out that in 2016, "Proposals should be discrete, well-defined tasks" (this is a new requirement which will help everybody to have a clearer and shared understanding of what is exactly requested).
So if anybody plans to propose this 2015 wish again for 2016, please strongly consider rewriting this wish by following the 2016 guidelines - essentially, by adding more details, links, and examples to the description, so that editors and developers who are not very familiar with the area can more easily understand it all, and why the feature or bug fix is important, and how they can potentially help.
Thank you a lot!

kaldari closed subtask T5233: Send a cookie with each block as Resolved.Nov 16 2016, 7:15 PM
Trijnstel subscribed.Nov 26 2016, 10:34 PM
DannyH reopened subtask T5233: Send a cookie with each block as Open.Jan 30 2017, 7:22 PM
MusikAnimal closed subtask T5233: Send a cookie with each block as Resolved.Mar 30 2017, 3:54 PM
Luis150902 added a subtask: T100070: Allow CheckUsers to set User agent (UA)-based IP Blocks.Apr 23 2017, 6:23 AM
Luis150902 added a subtask: T21796: Checkuser watchlist feature.Apr 23 2017, 6:26 AM
Krinkle moved this task from Backlog to User blocking on the MediaWiki-User-management board.May 7 2017, 11:50 PM
TBolliger subscribed.Nov 7 2017, 11:32 PM
TBolliger added a project: Anti-Harassment.Nov 8 2017, 8:50 PM
jrbs subscribed.Dec 7 2017, 11:11 PM
Liuxinyu970226 subscribed.Dec 31 2017, 3:16 PM
TBolliger renamed this task from Improve MediaWiki's blocking tools to Epic ⚡️ Improve MediaWiki's blocking tools.Jan 12 2018, 11:02 PM
TBolliger moved this task from Untriaged to Product/Tech backlog on the Anti-Harassment board.
Luis150902 subscribed.Feb 2 2018, 6:45 PM
TBolliger added a subtask: T188160: Investigation: Block by combination of hashed identifiable information (e.g. user agent, screen resolution, etc.) in addition to IP range. .Feb 24 2018, 12:49 AM
Restricted Application added a subscriber: MGChecker. · View Herald TranscriptFeb 24 2018, 12:49 AM
TBolliger added a subtask: T152462: Add cookie when blocking anonymous users.Feb 24 2018, 12:52 AM
SQL subscribed.Mar 13 2018, 4:44 AM
TBolliger closed subtask T188160: Investigation: Block by combination of hashed identifiable information (e.g. user agent, screen resolution, etc.) in addition to IP range. as Resolved.Mar 14 2018, 6:32 PM
TBolliger mentioned this in T190350: Epic: ⚡️ Partial blocks.Mar 21 2018, 9:59 PM
dbarratt added a subtask: T190889: Add regex functionality to User Agent + IP blocks.Mar 28 2018, 12:05 AM
kaldari closed subtask T152462: Add cookie when blocking anonymous users as Resolved.May 28 2018, 3:14 PM
AfroThundr3007730 subscribed.Jul 5 2018, 4:19 AM
TBolliger closed subtask T190889: Add regex functionality to User Agent + IP blocks as Declined.Jan 30 2019, 9:51 PM
TBolliger closed this task as Resolved.Jan 30 2019, 10:33 PM
TBolliger claimed this task.

This was a tracking ticket to categorize work. Those projects have ended, so marking this task as resolved.

Liuxinyu970226 unsubscribed.Feb 1 2019, 1:46 PM
Content licensed under Creative Commons Attribution-ShareAlike (CC BY-SA) 4.0 unless otherwise noted; code licensed under GNU General Public License (GPL) 2.0 or later and other open source licenses. By using this site, you agree to the Terms of Use, Privacy Policy, and Code of Conduct. · Wikimedia Foundation · Privacy Policy · Code of Conduct · Terms of Use · Disclaimer · CC-BY-SA · GPL · Credits