Page MenuHomePhabricator
Create Task
Maniphest T188862

Disable the collection of private information on abusefilter log for Beta Cluster wikis
Closed, ResolvedPublic
Actions

Description

Given the way userrights are managed there, prevent abusefilter to collect private data to avoid non-NDA people to get access to it.

Details

SubjectRepoBranchLines +/-
Disable AbuseFilter from collecting IP addresses on Betaoperations/mediawiki-configmaster+2 -0
beta: disable abusefilter from collecting user IP addressesoperations/mediawiki-configmaster+5 -0
Customize query in gerrit

Related Objects

Event Timeline

MarcoAurelio created this task.Mar 4 2018, 12:54 PM
Restricted Application added a project: User-MarcoAurelio. · View Herald TranscriptMar 4 2018, 12:54 PM
Restricted Application added a subscriber: Aklapper. · View Herald Transcript
MarcoAurelio moved this task from unsorted/backlog to working on on the User-MarcoAurelio board.Mar 4 2018, 12:54 PM
gerritbot subscribed.Mar 4 2018, 1:01 PM

Change 416346 had a related patch set (by MarcoAurelio) published:
[operations/mediawiki-config@master] Disable abusefilter from collecting private data on Beta

https://gerrit.wikimedia.org/r/416346

gerritbot added a project: Patch-For-Review.Mar 4 2018, 1:01 PM
MarcoAurelio triaged this task as Medium priority.Mar 4 2018, 1:02 PM
MarcoAurelio moved this task from Intake to Doing on the Privacy board.
MarcoAurelio moved this task from To Triage to Extensions & services config on the Beta-Cluster-Infrastructure board.
Krenair subscribed.EditedMar 4 2018, 7:28 PM

I don't think this will actually prevent people without NDAs from accessing it as they can just get shell access and put some other logging in

MarcoAurelio added a comment.Mar 4 2018, 7:30 PM

afaics that variable will prevent abusefilter from collecting that data so even with shell, afl_ip fields on abuse_filter_log should be empty.

Krenair added a comment.Mar 4 2018, 7:31 PM

sure but they could turn it back on, or dig up IPs etc. some other way

Tgr subscribed.Mar 12 2018, 11:24 PM

It is unrealistic to assume that only people with an NDA get access to private Beta Cluster data (and the exact point of Beta is to be able to test code without red tape like that). If something gives that impression, we should work on correcting that, instead.

MarcoAurelio added a comment.Mar 13 2018, 11:24 AM

CheckUser was removed from Beta for the same reasons. Prevent people messing with private data. The 'abusefilter-private' is checkuser by the back door. It should go as well.

MarcoAurelio moved this task from working on to ready/patched/SWAT on the User-MarcoAurelio board.Mar 14 2018, 10:36 PM
gerritbot added a comment.Mar 21 2018, 6:34 PM

Change 416346 merged by jenkins-bot:
[operations/mediawiki-config@master] beta: disable abusefilter from collecting user IP addresses

https://gerrit.wikimedia.org/r/416346

MarcoAurelio added a subscriber: demon.EditedMar 21 2018, 6:53 PM

There seems to be a problem with how I implemented this:

-----------------------------------------------------------------
deploymentwiki
-----------------------------------------------------------------
PHP Notice:  Undefined variable: wmgUseAbuseFilter in /srv/mediawiki/wmf-config/                                                                                                                                  CommonSettings-labs.php on line 63
Notice: Undefined variable: wmgUseAbuseFilter in /srv/mediawiki/wmf-config/Commo                                                                                                                                  nSettings-labs.php on line 63
deploymentwiki:  Purging old IP Address data from abuse_filter_log...
deploymentwiki:  47
deploymentwiki:  47 rows.
deploymentwiki:  Done.

@demon Any idea why it is failing at that (PHP Notice: Undefined variable: wmgUseAbuseFilter in /srv/mediawiki/wmf-config/ CommonSettings-labs.php on line 63)? Thanks.

Framawiki subscribed.Mar 21 2018, 6:55 PM
MarcoAurelio moved this task from ready/patched/SWAT to working on on the User-MarcoAurelio board.Mar 23 2018, 9:58 AM

The patch that implemented this got reverted per my message above. Wondering if it'll work if we removed the if (wmgUseAbuseFilter) thing from it.

MarcoAurelio removed a project: Patch-For-Review.Mar 23 2018, 10:35 AM
gerritbot added a comment.Mar 26 2018, 11:15 AM

Change 421864 had a related patch set (by MarcoAurelio) published:
[operations/mediawiki-config@master] Disable AbuseFilter from collecting IP addresses on Beta

https://gerrit.wikimedia.org/r/421864

gerritbot added a project: Patch-For-Review.Mar 26 2018, 11:15 AM
MarcoAurelio moved this task from working on to ready/patched/SWAT on the User-MarcoAurelio board.Mar 26 2018, 11:39 AM
gerritbot added a comment.Mar 27 2018, 10:08 PM

Change 421864 merged by jenkins-bot:
[operations/mediawiki-config@master] Disable AbuseFilter from collecting IP addresses on Beta

https://gerrit.wikimedia.org/r/421864

MarcoAurelio closed this task as Resolved.Mar 28 2018, 12:40 PM
MarcoAurelio removed a project: Patch-For-Review.

This works now.

MarcoAurelio moved this task from ready/patched/SWAT to cabinet on the User-MarcoAurelio board.Mar 28 2018, 12:40 PM
sbassett moved this task from Doing to Done on the Privacy board.Oct 16 2019, 4:35 PM
Daimona mentioned this in T339246: Enable feature flag in BETA for Participant Questions.Jun 20 2023, 11:02 PM
Content licensed under Creative Commons Attribution-ShareAlike (CC BY-SA) 4.0 unless otherwise noted; code licensed under GNU General Public License (GPL) 2.0 or later and other open source licenses. By using this site, you agree to the Terms of Use, Privacy Policy, and Code of Conduct. · Wikimedia Foundation · Privacy Policy · Code of Conduct · Terms of Use · Disclaimer · CC-BY-SA · GPL · Credits