Page MenuHomePhabricator
Create Task
Maniphest T290856

SecurePoll's management groups were removed from testwiki [public]
Closed, ResolvedPublic
Actions

Description

This is a public counterpart to T290808.

SecurePoll's management groups (electionadmin and related) were removed from testwiki due to an incident.

Related Objects

Event Timeline

Urbanecm created this task.Sep 13 2021, 11:00 AM
Restricted Application added a subscriber: Aklapper. · View Herald TranscriptSep 13 2021, 11:00 AM
Urbanecm mentioned this in T290808: Users with no NDA can access confidential information at testwiki's SecurePoll instance (CVE-2021-46148).Sep 13 2021, 11:03 AM
Urbanecm mentioned this in T277353: electionadmin group needs to be added to testwiki to restore securepolls testing functionality.Sep 13 2021, 11:06 AM
Urbanecm added projects: Wikimedia-Site-requests, Security, Anti-Harassment.Sep 13 2021, 11:08 AM
Urbanecm added a project: Security-Team.
Peachey88 subscribed.Sep 13 2021, 11:36 AM
Zabe subscribed.Sep 13 2021, 1:06 PM
JJMC89 subscribed.Sep 13 2021, 3:27 PM
Reedy edited projects, added SecTeam-Processed; removed Security-Team.Sep 13 2021, 3:44 PM
Xaosflux subscribed.Sep 13 2021, 4:19 PM
Niharika added a project: MediaWiki-extensions-SecurePoll.Sep 21 2021, 8:43 PM
Niharika removed a project: Anti-Harassment.
4nn1l2 subscribed.Oct 26 2021, 4:18 PM
Zabe mentioned this in T295214: Ruwiki users needs to test secret ballot through SecurePoll.Nov 6 2021, 7:20 AM
Huji subscribed.Nov 6 2021, 1:02 PM

Not sure what the incident was and have not seen the private task, but I wonder: should we separate "electionadmin" right form a (yet to be created) "scrutineer" right, such that election admin only has access to the ballot create/edit pages and the tally page, and scrutineer has access to individual vote data? Of course some may have both roles assigned to them.

Urbanecm added a comment.Nov 7 2021, 8:08 PM
In T290856#7487294, @Huji wrote:

Not sure what the incident was and have not seen the private task, but I wonder: should we separate "electionadmin" right form a (yet to be created) "scrutineer" right, such that election admin only has access to the ballot create/edit pages and the tally page, and scrutineer has access to individual vote data? Of course some may have both roles assigned to them.

The incident is almost resolved now: a patch fixing the underlying issue was deployed. I asked in the private task if it can be made public now. There's some followup, but that followup doesn't have security impact.

jrbs subscribed.Dec 6 2021, 12:41 PM

Now that T290808 is public I guess this counterpart task can be closed?

4nn1l2 closed this task as Resolved.Feb 3 2022, 5:19 PM
4nn1l2 assigned this task to Urbanecm.

I'm going to boldly close this ticket. If it needs to be re-opened, just open it again. Thanks.

Restricted Application added a project: User-Urbanecm. · View Herald TranscriptFeb 3 2022, 5:19 PM
Content licensed under Creative Commons Attribution-ShareAlike (CC BY-SA) 4.0 unless otherwise noted; code licensed under GNU General Public License (GPL) 2.0 or later and other open source licenses. By using this site, you agree to the Terms of Use, Privacy Policy, and Code of Conduct. · Wikimedia Foundation · Privacy Policy · Code of Conduct · Terms of Use · Disclaimer · CC-BY-SA · GPL · Credits