[freeroleplay] Re: Wiki Security
- From: Ricardo Gladwell <ax0n@xxxxxxxxxxx>
- To: freeroleplay@xxxxxxxxxxxxx
- Date: Mon, 05 Jul 2004 10:58:26 +0100
Hi James,
I think I agree with Sam: the best approach would be to block on IP
address. My suspicion is that the culprits are scripts sitting on servers
scanning for vulnerable Wikis. Blocking IP addresses should go some way to
stemming the flow.
I think allowing only logged-in members to modify the Wiki is not a step we
perhaps should take yet. Wikipedia, possibly the largest wiki on the
Internet, doesn't do this and I think we can get away without doing it
ourselves, for the time being at least.
Kind regards....
--
Ricardo Gladwell
President, Free Roleplaying Community
http://www.freeroleplay.org/
president@xxxxxxxxxxxxxxxx
James Jensen wrote:
> On Sun, 2004-07-04 at 16:11, Samuel Penn wrote:
>
>>WakkaWiki is one Wiki (which I use) which makes use of ACLs.
>>Useful for putting campaign info up as well, when you don't want
>>players fiddling with certain pages.
>
> While that could be useful in certain circumstances, it really doesn't
> address this problem, which is that troublemakers are posting some
> pretty bad stuff just to cause trouble. I could see how locking some
> important pages would dampen their spirits a bit, but I doubt it will be
> enought, and on this wiki the most important stuff is the stuff that
> needs to not be locked.
>
> On the other hand, if you prevent anonymous posting by requiring user
> names and passwords (which must be linked to a valid e-mail address), it
> should discourage the vast majority of spamming and trouble-making,
> because You'll Know Who They Are.
>
> Better still, gratis registration would not prevent anyone from helping
> with the project, which is what we want.
>
> -J. Jensen
Other related posts:
