Page MenuHomePhabricator

Add capabality for attachments in Special:EmailUser
Closed, DuplicatePublic

Description

Please enable mailing attachments by Special:EmailUser for at least usergroup sysops/administrators. It's very useful for sharing research material.

Event Timeline

doctaxon created this task.Nov 6 2019, 8:09 AM
Restricted Application added a subscriber: Aklapper. · View Herald TranscriptNov 6 2019, 8:09 AM
Urbanecm renamed this task from Special:EmailUser to Add capabality for attachments in Special:EmailUser.Nov 6 2019, 9:08 AM

@doctaxon: Why would you not upload an attachment in MediaWiki, if you already use MediaWiki's email system anyway?

@Aklapper: Because some of these attachments are copyrighted and only for private research use. If copyrighted I must not upload the content of these attachments to MediaWiki.

Bawolff added a subscriber: Bawolff.Nov 7 2019, 4:00 AM

I would be concerned about the increased potential for phising and viruses/other malicious attachments.

I would be concerned about the increased potential for phising and viruses/other malicious attachments.

Yeah, same concern here.

@Aklapper: Because some of these attachments are copyrighted and only for private research use. If copyrighted I must not upload the content of these attachments to MediaWiki.

Is there reason you'd choose to use Special:EmailUser over a standard e-mail client? Presumably wiki administrators could be given access to users' e-mail addresses. That would probably be less dangerous and cumbersome than adding attachment capability to Special:EmailUser.

Is there reason you'd choose to use Special:EmailUser over a standard e-mail client? Presumably wiki administrators could be given access to users' e-mail addresses. That would probably be less dangerous and cumbersome than adding attachment capability to Special:EmailUser.

Privacy related issues. Even checkusers don't have that kind of ability. I see no reason to give real email access to just admins.

I would be concerned about the increased potential for phising and viruses/other malicious attachments.

Why don't you consider antivirus software as freemail providers do, too?

Reedy added a subscriber: Reedy.EditedNov 11 2019, 5:04 AM

I would be concerned about the increased potential for phising and viruses/other malicious attachments.

Why don't you consider antivirus software as freemail providers do, too?

Not allowing attachments is much easier/saner than accepting liability for scanning/dealing with attachments and not identifying something that's problematic

I would be concerned about the increased potential for phising and viruses/other malicious attachments.

Why don't you consider antivirus software as freemail providers do, too?

Not allowing attachments is much easier/saner than accepting liability for scanning/dealing with attachments and not identifying something that's problematic

The easier way must not exclude other ways w/o at least one trial.

The easier way must not exclude other ways w/o at least one trial.

Must? I mean, watch us do just that :P

To be more serious: If you had a compelling reason for how this would benefit wikimedia, we would look into solutions to mitigate the risks. The rationales provided so far arent, so we probably wont.