Page MenuHomePhabricator
Feed Advanced Search

Mar 15 2022

GeneralNotability added a member for Stewards-and-global-tools: GeneralNotability.
Mar 15 2022, 1:14 AM
GeneralNotability added a comment to T303774: Investigate the practice of making thousands of global blocks per day on Meta-Wiki.
Mar 15 2022, 1:13 AM · SecTeam-Processed, Security-Team, Stewards-and-global-tools

Mar 13 2022

GeneralNotability added a comment to T294995: Deadlocks from job setting VectorSkinVersion user preference to 1.

Confirming that it's inconsistent - I've done CreateLocalAccount several times today and it's only triggered once.

Mar 13 2022, 6:37 PM · Patch-For-Review, Readers-Web-Backlog (Kanbanana-FY-2021-22), Vector, MediaWiki-User-preferences, Wikimedia-production-error

Feb 20 2022

GeneralNotability added a comment to T302139: Not receiving VRT notification emails.

Confirmed, just got a wave of emails.

Feb 20 2022, 3:09 PM · SRE, Mail, Znuny, Infrastructure-Foundations, vrts

Feb 19 2022

GeneralNotability created T302139: Not receiving VRT notification emails.
Feb 19 2022, 12:38 AM · SRE, Mail, Znuny, Infrastructure-Foundations, vrts

Feb 3 2022

GeneralNotability added a comment to T295073: <Org-Wide Impact> Google Chrome User-Agent Deprecation Impact.

If you all need a CU to test/provide feedback, I would be happy to volunteer!

Feb 3 2022, 2:26 AM · Foundational Technology Requests

Jan 12 2022

GeneralNotability updated the task description for T298912: Access to aggregate User Agent statistics.
Jan 12 2022, 2:12 AM · Generated Data Platform, Platform Engineering, Metrics-Platform, User-Urbanecm, Data-Engineering

Jan 10 2022

GeneralNotability created T298912: Access to aggregate User Agent statistics.
Jan 10 2022, 9:31 PM · Generated Data Platform, Platform Engineering, Metrics-Platform, User-Urbanecm, Data-Engineering

Dec 2 2021

GeneralNotability created T296899: Special:CheckUserLog and checkuserlog API do not handle IP ranges the same way.
Dec 2 2021, 12:36 AM · Patch-For-Review, CheckUser

Nov 10 2021

GeneralNotability updated GeneralNotability.
Nov 10 2021, 6:03 PM
GeneralNotability added a comment to T295099: Raise bullseye maximum concurrent database connections.

Thanks @Legoktm, I wasn't aware of that, will give it a try. I don't think it'll solve all the problems without a major overhaul of my code to do what bd808 suggested earlier with the queue + bulk write, but it should improve things a bit.

Nov 10 2021, 6:00 PM · Toolforge

Nov 5 2021

GeneralNotability added a comment to T295099: Raise bullseye maximum concurrent database connections.

This isn't a time-critical issue, so I would be happy to be a guinea pig for working with WMCS to figure this out. And from what I've read online, the "right" approach here generally would involve memcached, but as far as I can tell that isn't available to toolforge projects.

Nov 5 2021, 10:32 PM · Toolforge
GeneralNotability added a comment to T295099: Raise bullseye maximum concurrent database connections.

Thanks @bd808 - I didn't see that, so I was following the "request a memory increase" template. The page you linked me to says that only requests for changes to wiki replica connections are being considered, and this request is about an increase in connections to toolsdb; should I just close this ticket as "not going to happen"?

Nov 5 2021, 12:11 AM · Toolforge
GeneralNotability created T295099: Raise bullseye maximum concurrent database connections.
Nov 5 2021, 12:03 AM · Toolforge

Oct 27 2021

GeneralNotability added a comment to T293379: [[:w:en:User:Firefly/checkuseragenthelper.js]] sends CU user-agents to a third party.

Thank you @Jrogers-WMF, the prompt response is much appreciated!

Oct 27 2021, 11:09 PM · Security-Team, User-Urbanecm, SecTeam-Processed, Trust-and-Safety, Privacy, Privacy Engineering, Security

Oct 19 2021

GeneralNotability added a comment to T293811: Clarify whether CUs should share non-public information with external services.

Thank you @sguebo_WMF. The specific question from the ticket was about UAs, but I ask that Legal also account for IPs, since those are covered under the same privacy policy and there is a much greater need to query external data on those. And as a caveat, none of these checks would link a username to the IPs - we're doing things like checking whois (https://whois-referral.toolforge.org/gateway.py?lookup=true&ip=8.8.8.8) or parsing a useragent (https://www.whatsmyua.info/api/v1/ua?ua=Mozilla/5.0%20(Windows%20NT%2010.0;%20Win64;%20x64;%20rv:93.0)%20Gecko/20100101%20Firefox/93.0), but nothing in these checks ties the private data to a specific user or users.

Oct 19 2021, 4:39 PM · Privacy Engineering

Oct 18 2021

GeneralNotability added a comment to T293379: [[:w:en:User:Firefly/checkuseragenthelper.js]] sends CU user-agents to a third party.

I won't argue the close, but I ask that security makes answering the broader question of "does this violate the privacy policy" this a high priority. It is a routine and ongoing practice for checkusers to consult external services for information on IPs, which are also protected as private information by the privacy policy and calling that unacceptable (which this closure somewhat implies) would have significant repercussions on checkusers' ability to combat harassment.

Oct 18 2021, 4:33 PM · Security-Team, User-Urbanecm, SecTeam-Processed, Trust-and-Safety, Privacy, Privacy Engineering, Security

Oct 16 2021

GeneralNotability added a comment to T293379: [[:w:en:User:Firefly/checkuseragenthelper.js]] sends CU user-agents to a third party.

After talking with Martin, I've redeployed my script without the external call (directly using one of the libraries the external service used). There is still a big question to be answered here, though, since feeding IPs (mentioned in the same line as UA in "personal information") into external services (for proxy checks, geolocation, even just WHOIS to get their range) is a routine part of the checkuser process and we do not have on-wiki tools that can provide those services. I'm not saying that as in "that's how I personally do it" - I've talked with checkusers before about their workflow and they have frequently mentioned those as part of their process. Again, my opinion is that _as long as those data points are not tied to a named account_ there is no privacy concern here, and it would be impractical to use the timing to connect these lookups to specific checks.

Oct 16 2021, 5:18 PM · Security-Team, User-Urbanecm, SecTeam-Processed, Trust-and-Safety, Privacy, Privacy Engineering, Security
GeneralNotability added a comment to T293379: [[:w:en:User:Firefly/checkuseragenthelper.js]] sends CU user-agents to a third party.

I spoke briefly with Martin on IRC about this to voice my concerns, but I will repeat them here: while I recognize that I am a newly-minted checkuser and am not the one making or interpreting the rules, I cannot see this as any different from how checkusers use routinely use WHOIS, geolocation tools, proxy detectors, and the like when investigating IP addresses (and I note that IP addresses are mentioned in the same section of the privacy policy as useragents). Yes, it is sending the UA to an external service, and it obviously ties the request to my IP, but as far as I know there is nothing coming out of MediaWiki that would also leak my username to the external website and so it would be a non-trivial task to match up checkuser actions with queries to this site.

Oct 16 2021, 1:55 PM · Security-Team, User-Urbanecm, SecTeam-Processed, Trust-and-Safety, Privacy, Privacy Engineering, Security

Oct 6 2021

GeneralNotability added a comment to T292623: [SPIKE] Investigate getting global contribution information for IP Info [8H].

A couple tools that do cross-wiki IP contribution searches, might be helpful:

Oct 6 2021, 12:44 PM · Anti-Harassment (The Letter Song), Spike, IP Info

Sep 28 2021

GeneralNotability added a comment to T289795: Understand impact of Apple's Relay Service.

Comment from enwiki - we routinely hardblock open proxies, including CDNs being used as proxies, which is why @Maryana was blocked from editing. Cloudflare already has Cloudflare WARP, and earlier data indicated that Cloudflare, Fastly, and Akamai were all possible exit points for Private Relay traffic, they are all on our block-open-ranges-on-sight list. We have made a specific block template for these services, but we haven't gone through and reblocked all of the known Private Relay exits using that template yet. Related discussion on enwiki from a few months ago can be found at https://en.wikipedia.org/wiki/Wikipedia:Administrators%27_noticeboard/Archive334#Upcoming_Apple%27s_iCloud_Private_Relay_(sort-of_VPN). If it helps anyone, a list of current egress points can be found at https://mask-api.icloud.com/egress-ip-ranges.csv (credit to @Urbanecm for showing that to me)

Sep 28 2021, 2:28 AM · Performance-Team (Radar), Fundraising-Backlog, Product-Analytics, Analytics-Radar, User-Johan, Wikipedia-iOS-App-Backlog

Jul 30 2021

GeneralNotability added a watcher for IP Info: GeneralNotability.
Jul 30 2021, 8:29 PM

May 12 2021

GeneralNotability added a comment to T282624: Limit IA granting/revoking to stewards only.

@jrbs the problem, as I see it, is that this is being presented as a fait accompli - the decision has been made, but if you want to complain, you may submit your concerns, to partially quote Douglas Adams, "in the bottom of a locked filing cabinet stuck in a disused lavatory with a sign on the door saying 'Beware of the Leopard.'" (in all seriousness - I think we all know that there exist no "questions or concerns" someone could raise that would actually change the outcome here). There have been discussions with the steward team, yes but not with the people who previously granted the right. It's too late now, but next time this sort of thing happens, I suggest at least talking to the impacted parties before the change is submitted for merge rather than blindsiding them such that they find out at the same time as everyone else.

May 12 2021, 12:24 AM · Community-consensus-needed, Tech-Ambassadors, wdwb-tech, Chinese-Sites, Wikidata, Serbian-Sites, Commons, Wiktionary-fr, Stewards-and-global-tools, User-notice, Trust-and-Safety, Wikimedia-Site-requests

Apr 6 2021

GeneralNotability added a comment to T278838: Mobile user communication issues (WP:THEYCANTHEARYOU).

I tried to fix a typo and a notice came up that said I had been blocked from editing. There was no explanation why, nor any indication of how I could find out why. How can I find out? This has happened before, and I think it happens when I'm not using WiFi.

Apr 6 2021, 12:10 AM · Growth-Team-Filtering, OWC2020, Editing-team, AbuseFilter, Wikipedia-Android-App-Backlog, Mobile, iOS-app-Bugs, Wikipedia-iOS-App-Backlog, Notifications, Growth-Team

Dec 8 2020

GeneralNotability added a comment to T268558: Allow minor (<small>-wrapped) comments to be saved via the reply link without duplicate signature.

How about a simpler option - just add a "don't append a signature" button to the advanced panel?

Dec 8 2020, 11:24 PM · Verified, Patch-For-Review, Editing-team (FY2021-22 Kanban Board), DiscussionTools

Nov 22 2020

GeneralNotability added a watcher for Code-Stewardship-Reviews: GeneralNotability.
Nov 22 2020, 10:52 PM

Oct 19 2020

GeneralNotability updated GeneralNotability.
Oct 19 2020, 7:56 PM
GeneralNotability added a member for Trusted-Contributors: L235.
Oct 19 2020, 7:55 PM

Oct 5 2020

GeneralNotability added a comment to T206954: Enable wgRelevantUserName for IP ranges.

Commenting as an admin + Twinkle user (pretty sure @Amorymeltzer has TW in mind here) that this functionality would be very useful - I routinely use Twinkle and I make rangeblocks fairly often, but when making rangeblocks my workflow is disrupted since Twinkle can't block from Special:Contribs/(IP)/(mask) so I have to use the normal block interface.

Oct 5 2020, 6:58 PM · MW-1.36-notes (1.36.0-wmf.25; 2021-01-05), MediaWiki-User-management, MediaWiki-Special-pages

Oct 1 2020

GeneralNotability added a watcher for CheckUser: GeneralNotability.
Oct 1 2020, 2:39 AM

Sep 26 2020

GeneralNotability added a watcher for AbuseFilter (Overhaul-2020): GeneralNotability.
Sep 26 2020, 1:33 AM

Sep 16 2020

GeneralNotability added a comment to T122220: Enable optional two-factor authentication for OTRS.

Now that we've upgraded to OTRS 6, I'm happy to be a volunteer to test this.

Sep 16 2020, 3:47 PM · Security, Znuny

Sep 4 2020

GeneralNotability added a comment to T260133: Request to add spihelper to AutoEdits.

Sure - there are changes to edit summary wording in my version so the current regex probably won't match it but I have no problem with the two being lumped together. Adding

\(using \[\[:w:en:User:GeneralNotability\/spihelper

to that regex would probably be enough to always match my version.

Sep 4 2020, 1:43 PM · XTools

Aug 12 2020

GeneralNotability added a comment to T260135: Change my Phabricator username to GeneralNotability.

@Aklapper thank you!

Aug 12 2020, 5:41 PM · Phabricator
xSavitar awarded T260135: Change my Phabricator username to GeneralNotability a Like token.
Aug 12 2020, 10:51 AM · Phabricator
Aklapper renamed GeneralNotability from creffett to GeneralNotability.
Aug 12 2020, 10:46 AM

Aug 11 2020

GeneralNotability created T260135: Change my Phabricator username to GeneralNotability.
Aug 11 2020, 1:20 PM · Phabricator
GeneralNotability created T260133: Request to add spihelper to AutoEdits.
Aug 11 2020, 1:15 PM · XTools

Jun 16 2020

GeneralNotability updated GeneralNotability.
Jun 16 2020, 4:11 PM

Apr 30 2020

GeneralNotability added a watcher for Znuny: GeneralNotability.
Apr 30 2020, 3:19 PM