Page MenuHomePhabricator
Feed Advanced Search

Jul 11 2019

suffusion_of_yellow added a comment to T227733: Draft: Masking IP addresses for increased privacy.

This change could actually reduce the privacy of registered users. If "privileged user" means CheckUser, this will require massively increasing the number of CheckUsers needed to deal with routine day-to-day vandalism. A compromised (or rogue) CheckUser account is a disaster, so the privacy of registered users depends on keeping the number of such accounts as low as possible.

Jul 11 2019, 4:21 PM · Privacy, MediaWiki-User-management, Anti-Harassment

Jun 26 2019

suffusion_of_yellow reopened T226503: [Regression wmf.10] Notification icons in the personal toolbar don't appear when using Monobook as "Open".
Jun 26 2019, 12:02 AM · MW-1.34-notes (1.34.0-wmf.13; 2019-07-09), User-MarcoAurelio, Growth-Team, Notifications, Regression, MonoBook
suffusion_of_yellow added a comment to T226503: [Regression wmf.10] Notification icons in the personal toolbar don't appear when using Monobook.

@Catrope: Now, in multiple browsers, document.body.scrollWidth > 10000 in MonoBook, producing a huge amount of empty space to the right of the content. Seemed to start with this fix.

Jun 26 2019, 12:01 AM · MW-1.34-notes (1.34.0-wmf.13; 2019-07-09), User-MarcoAurelio, Growth-Team, Notifications, Regression, MonoBook

May 15 2019

suffusion_of_yellow added a comment to T223023: Switching from source to visual editing in mobile web removes all other sections.

@matmarex: Also tried in my sandbox, and it seems to work! And based on the latest data (created by piping variable dumps from an existing abuse filter to a throwaway Perl script), the problem seems to have stopped for everyone else.

May 15 2019, 12:30 AM · MW-1.34-notes (1.34.0-wmf.4; 2019-05-07), VisualEditor (Current work), VisualEditor-MediaWiki-Mobile, MobileFrontend, Section Editing

May 14 2019

suffusion_of_yellow updated the task description for T223195: Invalid IPv6 URL on page causes all non-autoconfirmed edits to trigger CAPTCHA.
May 14 2019, 5:40 AM · ConfirmEdit (CAPTCHA extension)
suffusion_of_yellow created T223195: Invalid IPv6 URL on page causes all non-autoconfirmed edits to trigger CAPTCHA.
May 14 2019, 5:38 AM · ConfirmEdit (CAPTCHA extension)

May 13 2019

suffusion_of_yellow added a comment to T223023: Switching from source to visual editing in mobile web removes all other sections.

Based on this extract from one of our section-blanking filters, it looks like this problem started on around 9 May, and is happening about 40 times per day on enwiki.

May 13 2019, 12:49 AM · MW-1.34-notes (1.34.0-wmf.4; 2019-05-07), VisualEditor (Current work), VisualEditor-MediaWiki-Mobile, MobileFrontend, Section Editing

Jan 15 2019

suffusion_of_yellow added a comment to T213763: Session failure warning message ('sessionfailure') still gives bad advice.

In principle, you should only get the session failure error if your token doesn't match your cookie, or if the request was missing some fields. In the event you have cookies disabled you should get a different error message. (I have not tested this myself - perhaps this code is broken and giving the wrong error message)

Jan 15 2019, 11:46 PM · Patch-For-Review, MediaWiki-Interface

Nov 24 2018

suffusion_of_yellow added a comment to T210329: CheckUsers have unlogged access to IP addresses via the AbuseFilter API.

A very quick fix would be to restore the status quo, and temporarily remove the abusefilter-private right from all CheckUsers.

Nov 24 2018, 7:33 PM · MW-1.34-notes (1.34.0-wmf.20; 2019-08-27), MW-1.33-notes (1.33.0-wmf.8; 2018-12-11), Privacy, AbuseFilter, Security
suffusion_of_yellow added a project to T210329: CheckUsers have unlogged access to IP addresses via the AbuseFilter API: AbuseFilter.
Nov 24 2018, 6:37 PM · MW-1.34-notes (1.34.0-wmf.20; 2019-08-27), MW-1.33-notes (1.33.0-wmf.8; 2018-12-11), Privacy, AbuseFilter, Security
suffusion_of_yellow updated subscribers of T210329: CheckUsers have unlogged access to IP addresses via the AbuseFilter API.
Nov 24 2018, 6:35 PM · MW-1.34-notes (1.34.0-wmf.20; 2019-08-27), MW-1.33-notes (1.33.0-wmf.8; 2018-12-11), Privacy, AbuseFilter, Security
suffusion_of_yellow created T210329: CheckUsers have unlogged access to IP addresses via the AbuseFilter API.
Nov 24 2018, 6:34 PM · MW-1.34-notes (1.34.0-wmf.20; 2019-08-27), MW-1.33-notes (1.33.0-wmf.8; 2018-12-11), Privacy, AbuseFilter, Security

Oct 18 2018

suffusion_of_yellow added a comment to T110329: Disable some parts of the editing interface from IPs and newbies because we don't trust them to use them correctly.

en wiki (https://en.wikipedia.org/w/index.php?title=Wikipedia:Edit_filter_noticeboard&oldid=864548831#VisualEditor) has created an edit filter to stop the rampant misuse of indexing in user space, that upon review we think is from this tool.

Do you have evidence of that, or is it a guess?
It would be relatively straightforward to figure that out, by seeing how many of the edits that add the magic word have the "Visual edit" tag on them.

Oct 18 2018, 9:30 PM · VisualEditor-MediaWiki, VisualEditor