Author |
Message |
GPFontaine
Joined: Dec 06 2007
Location: Connecticut
Posts: 11244
|
It is at version 1.18, the most recent is 1.19.
The only reason to modify or update is for security, not for features.
"New skins/common/*.css files usable by skins instead of having to copy
piles of
generic styles from MonoBook or Vector's css."
Gah... I don't feel like dealing with that right now. Just leave it at 1.18 until something substantial changes.
|
|
|
|
|
Hacker
Banned
Joined: Sep 13 2008
Posts: 3129
|
Alright so now we can focus on the bots.
Does the dreamhost cpanel have a IP filter?
|
|
|
|
|
GPFontaine
Joined: Dec 06 2007
Location: Connecticut
Posts: 11244
|
Holy shit... the fucking wiki got slammed.
I'll look into it further in about 3 hours.
|
|
|
|
|
Syd Lexia
Site Admin
Title: Pop Culture Junkie
Joined: Jul 30 2005
Location: Wakefield, MA
Posts: 24869
|
Gar... Fucking hell. Re-restrict it, I guess.
|
|
|
|
|
Ghandi
Title: Alexz Aficionado
Joined: May 21 2008
Posts: 2889
|
Hacker wrote: |
Alright so now we can focus on the bots.
Does the dreamhost cpanel have a IP filter? |
IPs with bots are a dangerous thing. They almost always use proxies so banning an IP would not accomplish much.
However, if you were to do such a thing, I've found banning IPs through HTAccess is useful and powerful. As long as you know it belongs to the offending user, of course, and isn't a proxy ip.
|
|
|
|
|
Syd Lexia
Site Admin
Title: Pop Culture Junkie
Joined: Jul 30 2005
Location: Wakefield, MA
Posts: 24869
|
Went through last night and deleted all the spam pages, and reverted and protected any real page that was edited by spambots.
|
|
|
|
|
GPFontaine
Joined: Dec 06 2007
Location: Connecticut
Posts: 11244
|
I have an idea, but I don't know how well it will work.
I think we can force the need for an account to have a confirmed email address to edit. The spam accounts never seem to have those. So this seem like a potential solution if registration is locked.
What do you think? Worth a shot?
http://www.mediawiki.org/wiki/Manual:User_rights#Examples
This example will disable editing of all pages, then re-enable for users with confirmed e-mail addresses only:
Code: |
# Disable for everyone.
$wgGroupPermissions['*']['edit'] = false;
# Disable for users, too: by default 'user' is allowed to edit, even if '*' is not.
$wgGroupPermissions['user']['edit'] = false;
# Make it so users with confirmed e-mail addresses are in the group.
$wgAutopromote['emailconfirmed'] = APCOND_EMAILCONFIRMED;
# Hide group from user list.
$wgImplicitGroups[] = 'emailconfirmed';
# Finally, set it to true for the desired group.
$wgGroupPermissions['emailconfirmed']['edit'] = true; |
|
|
|
|
|
Syd Lexia
Site Admin
Title: Pop Culture Junkie
Joined: Jul 30 2005
Location: Wakefield, MA
Posts: 24869
|
I'd be fine with that. I just realized, this most recent time, we didn't even require account creation at all to edit.
Not that that ever really stopped spambots before, but we were especially hard hit this time.
|
|
|
|
|
Syd Lexia
Site Admin
Title: Pop Culture Junkie
Joined: Jul 30 2005
Location: Wakefield, MA
Posts: 24869
|
GPFontaine wrote: |
What do you think? Worth a shot? |
Did this ever happen? If so, it did not work.
|
|
|
|
|
Hacker
Banned
Joined: Sep 13 2008
Posts: 3129
|
Well damn... I wonder what caused spambots to even think of this site at all
|
|
|
|
|
GPFontaine
Joined: Dec 06 2007
Location: Connecticut
Posts: 11244
|
Syd Lexia wrote: |
GPFontaine wrote: |
What do you think? Worth a shot? |
Did this ever happen? If so, it did not work. |
Never happened... work overwhelmed me this week (start of semester is next Tuesday). I'm going to do it now.
|
|
|
|
|
GPFontaine
Joined: Dec 06 2007
Location: Connecticut
Posts: 11244
|
|
|
|
Syd Lexia
Site Admin
Title: Pop Culture Junkie
Joined: Jul 30 2005
Location: Wakefield, MA
Posts: 24869
|
|
|
|
|