Page MenuHomePhabricator
People Olgazgovora

Olgazgovora
User

Projects

User does not belong to any projects.

Calendar

Today

  • Clear sailing ahead.

Tomorrow

  • Clear sailing ahead.

Monday

  • Clear sailing ahead.

User Details

User Since
Sep 2 2020, 2:52 PM (144 w, 2 d)
Availability
Available
LDAP User
Unknown
MediaWiki User
Olgazgovora [ Global Accounts ]

Recent Activity
View All

Sep 7 2020

Olgazgovora added a comment to T256533: Identify accounts with very high login rate.
In T256533#6440407, @Urbanecm wrote:

I have unlocked the user account, and I will monitor the logins.

Sep 7 2020, 3:07 PM · User-Urbanecm, WMF-General-or-Unknown, Security, Security-Team
Olgazgovora added a comment to T256533: Identify accounts with very high login rate.
In T256533#6438978, @Urbanecm wrote:

Dear @Olgazgovora,

sure. In short, the bot dramatically increased its amount of login requests (from about 5 % of login requests to more than 70 % of login requests), and as such, it has been temporarily blocked.

[urbanecm@mwlog1001 /srv/mw-log]$ head -n 1 goodpass.log | grep -Eo '^[0-9]{4}-[0-9]{2}-[0-9]{2} [0-9]{2}:[0-9]{2}:[0-9]{2}'
2020-09-06 08:34:43
[urbanecm@mwlog1001 /srv/mw-log]$ grep FaFlo goodpass.log | wc -l
52325
[urbanecm@mwlog1001 /srv/mw-log]$ tail -n1 goodpass.log | grep -Eo '^[0-9]{4}-[0-9]{2}-[0-9]{2} [0-9]{2}:[0-9]{2}:[0-9]{2}'
2020-09-06 15:02:22
[urbanecm@mwlog1001 /srv/mw-log]$ wc -l < goodpass.log
72722
[urbanecm@mwlog1001 /srv/mw-log]$

According to the logs, your bot made 52325 successful login attempts (out of 72722 attempts in total) between 2020-09-06 08:34:43 and 2020-09-06 15:02:22 (ie. in 6,5 hours). That means it made over 70 % of requests alone, and that it logs in more than twice per second. Very similar numbers apply for both yesterday (September 05) and the day before (September 04).

As such, I have temporarily locked the account. Please fix that issue, and let me know.

Sincerely,

Martin Urbanec

I've changed the code for the Wikiwho project too. Could you, please, unlock FaFlo and also tell us how the number of login requests changed? Thank you!

Sep 7 2020, 12:14 AM · User-Urbanecm, WMF-General-or-Unknown, Security, Security-Team

Sep 4 2020

Olgazgovora added a comment to T256533: Identify accounts with very high login rate.
In T256533#6435090, @Urbanecm wrote:

As of today, FaFlo is the only bot that sends moe than 10k requests/3 days. I sent him a follow-up message via both email and talk page, including a note the account may be disabled. Apart from that, CommonsDelinker is very close to 10k (it made 9612 requests). On the positive side, ListeriaBot disapppeared from the list.

Thanks @Olgazgovora for the info.

Sep 4 2020, 4:04 PM · User-Urbanecm, WMF-General-or-Unknown, Security, Security-Team

Sep 2 2020

Olgazgovora added a comment to T256533: Identify accounts with very high login rate.
In T256533#6408832, @Urbanecm wrote:

Here are current logins ordered by frequency

Mr.Ibrahembot127162
ListeriaBot74121
WP 1.0 bot20387
FaFlo15889
EmausBot12735
CommonsDelinker11952
Matthias Winkelmann5351
AlaaBot4356
FlickreviewR 23776
Luke081515Bot3482
YouTubeReviewBot3172
Antigng-bot2058
Lê Lợi (bot)1963
DeltaQuadBot1895
Olafbot1638
WikitanvirBot1593
MusikBot1585
Jembot1561
AlbeROBOT1351
MusikBot II1270

from https://logstash.wikimedia.org/goto/d7fcb59c2cc892b96bf1100fd77994df (last 2 days)

Sep 2 2020, 3:38 PM · User-Urbanecm, WMF-General-or-Unknown, Security, Security-Team
Content licensed under Creative Commons Attribution-ShareAlike 3.0 (CC-BY-SA) unless otherwise noted; code licensed under GNU General Public License (GPL) or other open source licenses. By using this site, you agree to the Terms of Use, Privacy Policy, and Code of Conduct. · Wikimedia Foundation · Privacy Policy · Code of Conduct · Terms of Use · Disclaimer · CC-BY-SA · GPL