[Xastir] Wiki permissions
ka7o at ka7o.net
ka7o at ka7o.net
Thu Mar 12 15:11:50 EDT 2009
Something like this:
# Email authentication required for new users
$wgEnableEmail = true;
$wgEnableUserEmail = true;
$wgEmailAuthentication = true;
$wgEmailConfirmToEdit = true;
Dropped into LocalSettings.php can help a lot too. Nothing to install
either - "it just works".
With those setups only users with confirmed email addresses can edit.
Helps keep the 'drive bys' out.
I've got 2 mediawiki instances going now - one I expect to see more
traffic than the other. This spam prevention is critical.
I also use this extension (LocalSettings.php bit).
# Enable ConrimEdit Extionsion
# http://www.mediawiki.org/wiki/Extension:ConfirmEdit
require_once( "$IP/extensions/ConfirmEdit/ConfirmEdit.php" );
Any edit/newpage that has a URL going offsite, editor has to do some
'math' to get it online. Slows the bots down. (yea, some seem to have
figured out the email bit).
Between the two, I'm ::knock on wood:: holding on pretty well, at the
minute. Time will tell.
73
> Looks like when Chuck re-enabled the wiki after his massive server crash,
> he
> did *not* restrict edit access to the "wikieditors" group, and therefore
> the
> wiki is once again wide open to abuse. It is seeing such abuse and
> several
> pages have been completely overwhelmed by spam.
>
> Chuck: If you're listening, it would be a perfect time to re-enable
> page protections, preferrably with a CAPTCHA rather than group
> permissions.
> Scott Miller uses a trivial CAPTCHA on info.aprs.net and that has been
> sufficient for several years.
>
> The wiki is completely useless if any moron can trash it.
>
> --
> Tom Russo KM5VY SAR502 DM64ux http://www.swcp.com/~russo/
> Tijeras, NM QRPL#1592 K2#398 SOC#236
> http://kevan.org/brain.cgi?DDTNM
> In some cultures what I do would be considered normal.
> -- Ineffective daily affirmation
>
> _______________________________________________
> Xastir mailing list
> Xastir at lists.xastir.org
> http://lists.xastir.org/cgi-bin/mailman/listinfo/xastir
>
More information about the Xastir
mailing list