Or we allow admins/GWT users to whitelist domains? Would that solve the security problem?
________________________________
Von: Glamtools <glamtools-bounces(a)lists.wikimedia.org> im Auftrag von bawolff
<bawolff+wn(a)gmail.com>
Gesendet: Dienstag, 15. November 2016 18:05
An: Conversations revolving around the development of GLAM Digital Tools
Betreff: Re: [Glamtools] Removing the whitelist
The whitelist is not for the community. Its out of concerns of
malicious webservers attacking wmf servers (Personally I think that's
a little paranoid, but that's the way it is). There's a bug about this
somewhere in phabricator
--
Brian
On Tue, Nov 15, 2016 at 4:46 PM, Fæ <faewik(a)gmail.com> wrote:
It would be interesting to make a proposal to the
community that the
whitelist is dropped for some demonstrably good uploaders. I would have to
think about the case for dropping it all together, as GWT rights are often
granted to uploaders with virtually no long term history on Wikimedia
projects. In fact one feature of GWT is that it can be used by GLAM
professionals with no previous project experience, in particular may find
unexpected difficulties in handling community contention over their uploads.
Fae
On 15 November 2016 at 16:11, Steinsplitter Wiki
<steinsplitter-wiki(a)live.com> wrote:
BTW: IMHO the whitelist stuff should be removed. I see no need to
whitelist domains. We assume good faith, unlikely that a GWT user uploads
tons of copyvios.
Users have to apply for the right and then they have to whitelist the
domain, too complicated.
For example
https://tools.wmflabs.org/url2commons/ has no restriction at
all (as far i know), at least not a domain whitelist.
--Steinsplitter
>
>
_______________________________________________
Glamtools mailing list
Glamtools(a)lists.wikimedia.org
https://lists.wikimedia.org/mailman/listinfo/glamtools
_______________________________________________
Glamtools mailing list
Glamtools(a)lists.wikimedia.org
https://lists.wikimedia.org/mailman/listinfo/glamtools