Page MenuHomePhabricator
Create Task
Maniphest T200856

Publicly log account bans made using the phab-ban tool
Open, Needs TriagePublic
Actions

Description

Publicly log account disable actions taken using the https://tools.wmflabs.org/phab-ban/ tool.

These actions are logged by Phabricator at https://phabricator.wikimedia.org/people/logs/, but that log is only available to phabricator administrators.

Requested by @MarcoAurelio.

Revisions and Commits

R2371 tool-phab-ban
Needs ReviewD1186 Log all disabled users on-wiki

Related Objects

Event Timeline

bd808 created this task.Jul 31 2018, 10:32 PM
Restricted Application added a subscriber: Aklapper. · View Herald TranscriptJul 31 2018, 10:32 PM
bd808 added a comment.Jul 31 2018, 10:39 PM

Logging could be done in a few ways:

  • The tool could keep track in a ToolsDB table and provide an interface to display the data
  • The tool could add a comment to a phabricator task designated for tracking these actions
  • The tool could create and resolve a task tagged with the acl*userdisable project

The second option would be technically easiest to implement, but would not provide any search features beyond ctrl+F in-page searching. The 3rd option is close to as easy as the first and would allow more search features. Both the second and third options would allow people who were interested to receive email notifications of actions via built-in phabricator features.

matmarex added a subscriber: matmarex.Jul 31 2018, 10:44 PM

The tool could add a comment to a phabricator task designated for tracking these actions

Wikipedia managed that way for years. ;) https://en.wikipedia.org/wiki/Wikipedia:Block_log

I think that would be enough.

MarcoAurelio added a comment.Jul 31 2018, 11:09 PM

Option 1 looks good. If too much work, what about a page on Wikitech, the same way the Server Admin Logs work? A never-to-be-closed task is something I don't really like to be honest. Thanks.

bd808 added a comment.Aug 1 2018, 11:51 PM
In T200856#4467400, @MarcoAurelio wrote:

Option 1 looks good. If too much work, what about a page on Wikitech, the same way the Server Admin Logs work?

Yeah, that's possible. https://wikitech.wikimedia.org/wiki/Tool:Phab-ban/Log would probably be a good place to put it.

revi added a subscriber: revi.Aug 8 2018, 7:34 PM
Sjoerddebruin added a subscriber: Sjoerddebruin.Aug 8 2018, 7:37 PM
MGChecker added a subscriber: MGChecker.Sep 9 2018, 1:05 AM
Stashbot added a subscriber: Stashbot.Sep 16 2018, 4:26 PM

Mentioned in SAL (#wikimedia-releng) [2018-09-16T16:26:23Z] <Hauskatze> phabricator: Account https://phabricator.wikimedia.org/p/Ponani/ disabled by me due to vandalism | T200856

Paladox added a subscriber: Paladox.Sep 16 2018, 4:33 PM
revi added a comment.May 14 2019, 7:07 AM

In the absence of official logging feature: Disabled https://phabricator.wikimedia.org/p/Mr.deVega/ for vandalism (If someone think it is fine to restore access pls do)

Krenair added a subscriber: Krenair.May 14 2019, 7:08 AM
revi added a comment.May 16 2019, 10:18 AM

Disabled https://phabricator.wikimedia.org/p/Yyn1312/ for vandalism on trust-and-safety board (and I see vandalism on his SUL account).

revi added a comment.Nov 12 2019, 1:01 PM

Disabled https://phabricator.wikimedia.org/p/SokoteZaman for spamming (looks like autogenerated) security bugs without responding to the questions.

DannyS712 added a subscriber: DannyS712.Nov 12 2019, 1:42 PM
DannyS712 added a comment.Nov 24 2019, 9:03 AM

Disabled https://phabricator.wikimedia.org/p/Vandofschool/ for spamming (see also SUL)

Aklapper added a comment.Nov 24 2019, 3:33 PM

Publicly log account disable actions taken using the https://tools.wmflabs.org/phab-ban/ tool.

@MarcoAurelio: Is there an actual real problem that would get solved by logging, or is this more of a theoretical "Any actions should be logged" task?

MGChecker added a comment.EditedNov 24 2019, 4:44 PM
In T200856#5687411, @Aklapper wrote:

Publicly log account disable actions taken using the https://tools.wmflabs.org/phab-ban/ tool.

@MarcoAurelio: Is there an actual real problem that would get solved by logging, or is this more of a theoretical "Any actions should be logged" task?

This has been started in the aftermath of https://lists.wikimedia.org/pipermail/wikitech-l/2018-August/090484.html, which triggered quite an outrage of Wikitech-l, I believe. See also: https://www.mediawiki.org/wiki/Topic:Uikcu1emvmw6e4z8 . There are quite some reasons why this is logged.

MarcoAurelio added a subscriber: MZMcBride.Nov 29 2019, 5:18 PM
In T200856#5687479, @MGChecker wrote:

This has been started in the aftermath of https://lists.wikimedia.org/pipermail/wikitech-l/2018-August/090484.html, which triggered quite an outrage of Wikitech-l, I believe. See also: https://www.mediawiki.org/wiki/Topic:Uikcu1emvmw6e4z8 . There are quite some reasons why this is logged.

I did not requested this due to @MZMcBride's block. I feel in MZ's case this would not have helped much. The Phabricator account disable log, which is visible to admins only, does not record any reason why an account was disabled, because the UI does not offer such an option. Even if the logs were public MZ would have found that her account was disabled but not why.

In T200856#5687411, @Aklapper wrote:

@MarcoAurelio: Is there an actual real problem that would get solved by logging, or is this more of a theoretical "Any actions should be logged" task?

This task is aimed to create some sort of audit because those who are part of acl*userdisable are using a shared Phab admin account (not via the UI but via an OAUth tool, but still). In the (hopefully unlikely) case someone from acl*userdisable goes rogue and start disabling accounts, do tool admins or others know who misused the tool so they can take action against them? If that is publicly logged or logged only to tool admins I'm rather indiferent at this stage, but there should be some sort of audit, internally if you want it, as to when and by whom an account was disabled using the shared PhabBanBot account.

DannyS712 added a comment.Dec 18 2019, 3:18 AM

Disabled https://phabricator.wikimedia.org/p/Jose.licon.359/ for spamming

Peachey88 added a subscriber: Peachey88.Dec 28 2019, 3:43 AM
DannyS712 added a comment.Mar 21 2020, 6:21 AM

Disabled https://phabricator.wikimedia.org/p/Vutting/ for vandalism

Billinghurst added a subscriber: Billinghurst.Apr 23 2020, 8:58 AM
DannyS712 added a comment.Apr 23 2020, 8:59 AM

Since there is no proper logging for adding users to acl*userdisable either, note: I've added @Billinghurst, can be trusted with this, and would have been helpful for them to have it

Aklapper added a comment.EditedApr 23 2020, 9:49 AM

There is, see https://phabricator.wikimedia.org/project/manage/3442/ :)

RhinosF1 added a subscriber: RhinosF1.Apr 23 2020, 9:53 AM
DannyS712 added a comment.Apr 23 2020, 10:13 AM
In T200856#6079253, @Aklapper wrote:

There is, see https://phabricator.wikimedia.org/project/manage/3442/ :)

I mean with log comments

Aklapper added a comment.Apr 23 2020, 10:58 AM

My link shows log comments. Or maybe I have no idea what "log comments" are. Or who needs them and why.

RhinosF1 added a comment.EditedApr 23 2020, 10:59 AM
In T200856#6079372, @Aklapper wrote:

My link shows log comments. Or maybe I have no idea what "log comments" are.

A reason for the change?

Or who needs them and why.

Not sure

Aklapper added a comment.EditedApr 23 2020, 11:01 AM
In T200856#6079374, @RhinosF1 wrote:

A reason for the change?

Personally I don't care about reasons. I trust people who can disable accounts that they have their reasons.

Plus you brought up adding people to the group which allows disabling user accounts. Do you really expect me to explain why I trust another user and give them such rights?

RhinosF1 added a comment.Apr 23 2020, 11:02 AM
In T200856#6079379, @Aklapper wrote:
In T200856#6079374, @RhinosF1 wrote:

A reason for the change?

Personally I don't care about reasons. I trust people who can disable accounts that they have their reasons.

Fully agree, it’s probably also blantantly obvious within a 30s for most cases as well.

DannyS712 added a comment.EditedSep 28 2020, 12:17 AM

Disabled https://phabricator.wikimedia.org/p/Jdub252/ for vandalism
Disabled https://phabricator.wikimedia.org/p/Fred.231084/ for vandalism
Added @jeena to acl*userdisable to be able to stop such vandalism in the future
Added @AndyRussG to acl*userdisable to be able to stop such vandalism in the future

DannyS712 added a subscriber: jeena.Sep 28 2020, 12:33 AM
DannyS712 added a subscriber: AndyRussG.Sep 28 2020, 12:57 AM
DannyS712 added a comment.Nov 11 2020, 5:37 AM

Disabled https://phabricator.wikimedia.org/p/Hong090/ for spam

CptViraj added a subscriber: CptViraj.Nov 11 2020, 8:19 AM
taavi added a revision: D1186: Log all disabled users on-wiki.Nov 12 2020, 2:30 PM
taavi mentioned this in D1186: Log all disabled users on-wiki.
DannyS712 added a comment.Dec 9 2020, 2:23 PM

Disabled https://phabricator.wikimedia.org/p/Ramtin0071/ for vandalism

Aklapper removed a subscriber: Aklapper.Dec 9 2020, 4:24 PM
Aklapper moved this task from To Triage to External on the Phabricator board.Feb 13 2021, 11:17 AM
Zabe added a subscriber: Zabe.Apr 24 2021, 7:19 PM
DannyS712 added a comment.Jul 1 2021, 7:56 AM

Disabled https://phabricator.wikimedia.org/p/Jace0411/ for nonsense creations and per global lock of SUL account

TheresNoTime removed a subscriber: RhinosF1.Dec 15 2022, 11:36 PM
Peachey88 added a subscriber: taavi.Sun, Mar 5, 3:56 AM

@taavi Now that the source has been migrated over to gitlab, Would you like to migrate your earlier diffusion patchset over?

Content licensed under Creative Commons Attribution-ShareAlike 3.0 (CC-BY-SA) unless otherwise noted; code licensed under GNU General Public License (GPL) or other open source licenses. By using this site, you agree to the Terms of Use, Privacy Policy, and Code of Conduct. · Wikimedia Foundation · Privacy Policy · Code of Conduct · Terms of Use · Disclaimer · CC-BY-SA · GPL