Page MenuHomePhabricator
Create Task
Maniphest T340275

Allow GlobalBlocking to block temporary accounts
Closed, DuplicatePublic
Actions

Description

Motivation

GlobalBlocking can globally block IPs and IP ranges. In the future we may want to expand it to also block temporary accounts globally. This task is to track potential work that may happen, if this turns out to be a demonstrated need.

Currently designated as 'Low' priority as this work is not officially planned yet.

Notes

Linked investigation: T331751: Investigate: Update GlobalBlocking for IP Masking

Related Objects
Search...

StatusSubtypeAssignedTask
 DuplicateNoneT340275 Allow GlobalBlocking to block temporary accounts
 OpenFeatureDreamy_JazzT17294 Allow globally blocking of accounts
 ResolvedDreamy_JazzT356990 GlobalBlocking extension has poor test coverage
 OpenDreamy_JazzT358777 Rename messages with the '-new' suffix to remove this suffix
 ResolvedDreamy_JazzT358776 Remove old versions of GlobalBlocking i18n messages
 ResolvedDreamy_JazzT358773 Remove the global accounts block configuration flag
 ResolvedDreamy_JazzT356924 Deploy global account blocks to WMF wikis
 ResolvedDreamy_JazzT356926 Add support to block global accounts using the globalblock API
 ResolvedDreamy_JazzT356929 Allow SpecialRemoveGlobalBlock to remove a global block on an account
 ResolvedDreamy_JazzT356931 Support modifying the status of global blocks on accounts using Special:GlobalBlockStatus
 ResolvedDreamy_JazzT356932 Allow Special:GlobalBlockList to show global blocks for accounts
 ResolvedDreamy_JazzT359584 Provide action links on Special:Log for global block entries
 ResolvedDreamy_JazzT356934 Allow a user to perform global blocks on accounts using Special:GlobalBlock
 ResolvedBUG REPORTDreamy_JazzT366352 The "Locally block anonymous users only" checkbox is not properly disabled when it is made visible
 ResolvedDreamy_JazzT356935 The 'globalblocks' API should support listing global blocks for accounts
 ResolvedTchandersT360516 Periodically remove orphaned global_block_whitelist entries
 ResolvedDreamy_JazzT360621 Test and make improvements to the fixGlobalBlockWhitelist.php script
 ResolvedDreamy_JazzT366386 Update GlobalBlockingHooks to support global account blocks
 ResolvedDreamy_JazzT356936 Update GlobalBlocking services to support global block on accounts
 ResolvedDreamy_JazzT358150 Update the GlobalBlockLocalStatusLookup and GlobalBlockLocalStatusManager services to support blocking accounts
 ResolvedDreamy_JazzT358157 Update the GlobalBlockManager service to support global blocks on accounts
 ResolvedDreamy_JazzT358155 Update GlobalBlockLookup service to support global blocks on accounts
 ResolvedDreamy_JazzT356876 Add a column to store central ID in globalblocks and global_block_whitelist tables
 Resolved MarosteguiT356987 Add gb_target_central_id to the globalblocks table on the centralauth DB
 Resolved MarosteguiT356988 Add gbw_target_central_id to global_block_whitelist table on WMF wikis
 ResolvedDreamy_JazzT359091 Create GlobalBlockLocalStatusManager service
 ResolvedDreamy_JazzT358865 Use non-legacy log parameters for log entries for global blocking and unblocking
 ResolvedDreamy_JazzT358725 Update the GlobalBlockingLinkBuilder service for global account blocks
 ResolvedDreamy_JazzT356923 Create a configuration value to control whether global account blocks are enabled
 ResolvedDreamy_JazzT356925 Update or duplicate GlobalBlocking messages to allow staged deployment of blocking accounts
 ResolvedDreamy_JazzT357385 Refactor the GlobalBlocking utility class into services
 ResolvedDreamy_JazzT357399 Create GlobalBlockingConnectionProvider
 ResolvedDreamy_JazzT357443 Create GlobalBlockingBlockPurger service
 ResolvedDreamy_JazzT357506 Create GlobalBlockLocalStatusLookup service
 ResolvedDreamy_JazzT357675 Create GlobalBlockLookup service
 ResolvedDreamy_JazzT357925 Create the GlobalBlockManager service
 ResolvedDreamy_JazzT366921 GlobalBlockingHooks::onSpecialPasswordResetOnSubmit is never called
 Resolved UrbanecmT367647 Review global blocks from a Steward perspective
 ResolvedBUG REPORTDreamy_JazzT369799 Special:GlobalBlockList shows "IP address" as label for target field when global account blocks are enabled
 ResolvedDreamy_JazzT369705 Override globalblocking-blockedtext-user and globalblocking-blockedtext-on-user to include appeal information
 OpenDreamy_JazzT332401 Remove old block error messages from GlobalBlocking extension
 ResolvedDreamy_JazzT356922 Deprecate unnecessary GlobalBlocking hooks
 ResolvedBUG REPORTDreamy_JazzT370417 GlobalBlocking messages on WMF wikis need updating for global account blocks
 OpenDreamy_JazzT370463 Update CheckUser to handle global account blocks
 OpenDreamy_JazzT358979 Show global block information on Special:CentralAuth/<username>
 ResolvedDreamy_JazzT370673 Add tests for SpecialCentralAuth
 ResolvedFeatureDreamy_JazzT370457 Add global block log link to the global block message on Special:Contributions

Event Timeline

Niharika triaged this task as Low priority.Jun 24 2023, 1:35 AM
Niharika created this task.
Restricted Application added a subscriber: Aklapper. · View Herald TranscriptJun 24 2023, 1:35 AM
Niharika updated the task description. (Show Details)Jun 24 2023, 1:35 AM
Niharika mentioned this in T331751: Investigate: Update GlobalBlocking for IP Masking.
Bugreporter subscribed.Jun 24 2023, 3:47 AM

I think T17294: Allow globally blocking of accounts should be fixed instead.

Vermont subscribed.Aug 11 2023, 6:18 PM
Urbanecm_WMF subscribed.Aug 17 2023, 12:25 PM
In T340275#8960404, @Bugreporter wrote:

I think T17294: Allow globally blocking of accounts should be fixed instead.

^^. Furthermore, I think this should not be a Low priority. As of now, GlobalBlocking would be of very limited use once we switch to IP Masking everywhere, as it is capable of only blocking IP addresses (it isn't capable of blocking registered users, including temporary accounts). While we can globally lock registered accounts (both named and temporary), this is not effective, as temp account holder will be logged out and the system will gladly provide them with another temporary account.

Vermont added a comment.Aug 18 2023, 6:49 PM

To maintain current capabilities, we would need to be able to set global blocks that only apply to temporary accounts (curently soft blocks), and global blocks which also apply to logged-in users (hard blocks).

This also raises the question of how account creation blocks will work, which I don't know if there's a ticket for that yet. Optimally, setting account creation off would prevent anonymous editing but would allow people to make actual accounts. And setting account creation on would prevent anonymous editing and creating accounts.

taavi subscribed.Aug 18 2023, 6:57 PM
Sj subscribed.Aug 18 2023, 7:06 PM

Related: I have often been travelling, editing on mobile, and connected to the internet through a blocked IP range. In those cases, there was no way to edit or propose an edit or make an account.

It would be good to in those cases to have an semi-soft block option that allows proposing an edit that sits in its own queue for review, so that editors who care to can sift through the queue and assess what proportion of such edits are good/usable vs bad/spam. This would also allow slow-but-sometimes-possible editing over Tor.

Bugreporter added a comment.Aug 18 2023, 9:24 PM
In T340275#9102290, @Sj wrote:

Related: I have often been travelling, editing on mobile, and connected to the internet through a blocked IP range. In those cases, there was no way to edit or propose an edit or make an account.

It would be good to in those cases to have an semi-soft block option that allows proposing an edit that sits in its own queue for review, so that editors who care to can sift through the queue and assess what proportion of such edits are good/usable vs bad/spam. This would also allow slow-but-sometimes-possible editing over Tor.

See also Suggestor, a proposed (not yet deployed) tool that allows Tor users to suggest edits for review. There are multiple variants:

  1. Approved edits are credited to the logged in account (only applies when the user is logged in)
  2. Approved edits are credited to the proxy/Tor IP
  3. Approved edits are attributed to users that review it (as T149961 proposed) with clearly indication that they are edits via that review system
  4. Approved edits are attributed to users that review it without indication (so that they are not distinguishable with other edits of the reviewer)

I am personally opposing such a review system, for the following reasons:

  • Variant 3 and 4 makes edits not tracable so there are no easy way to prevent users from abusing the review system. Variant 2 does but proxies can be easily changed
  • This make users able to circumvent local or global santions (such as WMF bans); Many edits looks good though they are actually disruptive, and this is why ban exists
Bugreporter added a comment.Aug 18 2023, 9:29 PM

Alternatively we can introduce a new type of (local and global) IP block between soft and hard one - one will only block non-confirmed users. This is proposed in T323948: Blocking all non-confirmed users on an IP or IP range (aka range block against sleeper accounts).

Note changing the current No Open Proxy policy to this new type of block will require a global RFC.

Bugreporter mentioned this in T323948: Blocking all non-confirmed users on an IP or IP range (aka range block against sleeper accounts).Aug 18 2023, 9:31 PM
Sj added a comment.EditedAug 30 2023, 7:25 AM

Please don't blanket-oppose such a review system, just help make it good :) I'm not sure how variant 3 supports abuse, any more than those reviewing editors could already make such edits themselves.

I would certainly be able to work with a semi-soft block. As it's possible to assign confirmed flags to new accounts, a variation could also allow running editing workshops through such blocked ranges. [schools often being subject to such blocks]

Vermont added a comment.Aug 30 2023, 1:32 PM
In T340275#9129585, @Sj wrote:

I would certainly be able to work with a semi-soft block. As it's possible to assign confirmed flags to new accounts, a variation could also allow running editing workshops through such blocked ranges. [schools often being subject to such blocks]

It's best to just request IPBE if you're traveling and on blocked ranges. Making some special block option that is effectively more-complicated FlaggedRevs is...something that would require a ton of work, would have questionable impact, difficult to patrol, etc.

Also, this should probably be discussed on another ticket :p

Bugreporter added a comment.Aug 30 2023, 10:07 PM

Also, this should probably be discussed on another ticket :p

Please discuss such idea at T323948: Blocking all non-confirmed users on an IP or IP range (aka range block against sleeper accounts).

Niharika added a comment.Sep 5 2023, 3:05 PM
In T340275#8960404, @Bugreporter wrote:

I think T17294: Allow globally blocking of accounts should be fixed instead.

Quick update - we are discussing this actively and there is a good chance we will end up working on T17294: Allow globally blocking of accounts instead of this task. I will have another update within a couple of weeks. Thanks all for the helpful comments.

Vermont added a comment.Sep 5 2023, 11:12 PM
In T340275#9143053, @Niharika wrote:
In T340275#8960404, @Bugreporter wrote:

I think T17294: Allow globally blocking of accounts should be fixed instead.

Quick update - we are discussing this actively and there is a good chance we will end up working on T17294: Allow globally blocking of accounts instead of this task. I will have another update within a couple of weeks. Thanks all for the helpful comments.

I'm realizing now that this ticket was made to allow global blocks to be placed against temporary accounts...which might as well be all accounts.

What seems to me to be a larger problem is that, at present, there would not be a way to distinguish global soft blocks and hard blocks. Everything would need to be a hard block because only accounts exist. This is unless autocreation of temporary accounts would be prevented by global blocks, in which case soft blocks would actually prevent anonymous editing by preventing creation of temp accounts. However, this would not affect already-created temporary accounts, which is a problem.

Tchanders mentioned this in T326937: Prepare CentralAuth extension for IP Masking.Oct 9 2023, 9:58 AM
Xaosflux subscribed.Nov 12 2023, 2:10 AM
Bugreporter mentioned this in T355286: [Epic] Globally blocking a temporary account should prevent further account creations.Jan 18 2024, 7:31 AM
Dreamy_Jazz added a subtask: T17294: Allow globally blocking of accounts.Feb 7 2024, 10:32 PM
Dreamy_Jazz closed this task as a duplicate of T17294: Allow globally blocking of accounts.Feb 19 2024, 11:01 PM
Content licensed under Creative Commons Attribution-ShareAlike (CC BY-SA) 4.0 unless otherwise noted; code licensed under GNU General Public License (GPL) 2.0 or later and other open source licenses. By using this site, you agree to the Terms of Use, Privacy Policy, and Code of Conduct. · Wikimedia Foundation · Privacy Policy · Code of Conduct · Terms of Use · Disclaimer · CC-BY-SA · GPL · Credits