I am trying to set read only permissions for a all except sysops on a custom namespace I use in my wiki.
First I tried to use the extension for that (http://meta.wikimedia.org/wiki/Talk:NamespacePermissions_Extension) but it doesn't seem to work. I'm using mediawiki 1.5.6 -does that extension require a newer version?
Anyway, I found this link (http://meta.wikimedia.org/wiki/Preventing_Access#Setting_permissions_for_a_G...) that explains how to do that manually, but I don't really get it:
I managed to restrict read access, but thats not what I wanted. Here's what I've done so far: ----------------------------------- in includes/Title.php
if( $wgUser->isAllowed('edit') ) { if( $this->getNamespace() == 106 ) { if( $wgUser->isAllowed('editforbidden') ) { return true; } else { return false; } } else { return true; } } else {
global $wgWhitelistRead;
in Localsettings.php
$wgGroupPermissions['sysop']['editforbidden'] = true; -------------------------------------
I hope someone can give advice, thanx.
Hi, all -
Sorry for the repeat question. I haven't seen any replies to the first one, so I'm trying again.
My wiki gets a ton of spam. And I have no idea what to do about it. Here's the info:
http://www.breakingranks.net/rankism_wiki/index.php?title=Main_Page
* MediaWiki: 1.5.6 * PHP: 4.4.2 (cgi) * MySQL: 5.0.18-standard-log
The really weird thing is after the last attack I discovered I couldn't roll back to a historical edit. When I went to "diff" it showed the historical version, but when I activated the "edit" tab, it went back to the current version. That meant I had to recreate all the over-written pages from scratch. This was the point when I realized there must be a better way. I can't imagine people continuing to use wikis if they just spend all their time battling spambots.
Any help is appreciated!
~ Elisa
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1
Moin,
On Sunday 30 July 2006 06:25, elisa.cooper@breakingranks.net wrote:
Hi, all -
Sorry for the repeat question. I haven't seen any replies to the first one, so I'm trying again.
My wiki gets a ton of spam. And I have no idea what to do about it. Here's the info:
http://www.breakingranks.net/rankism_wiki/index.php?title=Main_Page
* MediaWiki: 1.5.6 * PHP: 4.4.2 (cgi) * MySQL: 5.0.18-standard-log
The really weird thing is after the last attack I discovered I couldn't roll back to a historical edit. When I went to "diff" it showed the historical version, but when I activated the "edit" tab, it went back to the current version. That meant I had to recreate all the over-written pages from scratch. This was the point when I realized there must be a better way. I can't imagine people continuing to use wikis if they just spend all their time battling spambots.
Have you looked at the various extensions that let you block spam before it happens?
In addition, slightly OT:
http://www.breakingranks.net/rankism_wiki/index.php?title=Main_Page
has links like:
[http://www.breakingranks.net/rankism_wiki/index.php?title=Coin-a-Word Coin-a-Word]
You dont want this, you want simple:
[[Coin-a-Word]]
Likewise, the text you used to describe how to create an article could be simplified if you install the inputbox extension and then simple make an input field "new article" on the main page :)
Hope that helps,
Tels
PS: It would be wise to write on your main page what your wiki is about - it is for someone totally new stumbling over it quite confusing.
- -- Signed on Sun Jul 30 14:34:59 2006 with key 0x93B84C15. Visit my photo gallery at http://bloodgate.com/photos/ PGP key on http://bloodgate.com/tels.asc or per email.
"MY CAUSE IS JUST... MY WILL IS STRONG... AND MY GUN IS VERY VERY LARGE!" - The Doom Guy
Hi, Tels -
Have you looked at the various extensions that let you block spam before it happens?
I haven't added any extensions at all. Where do I find these?
You dont want this, you want simple:
[[Coin-a-Word]]
Thanks!
inputbox extension and then simple make an input field "new article" on the main page :)
Nifty! Thanks for this suggestion, too!
PS: It would be wise to write on your main page what your wiki is about - it is for someone totally new stumbling over it quite confusing.
The wiki is associated with this web site: http://www.breakingranks.net
I stopped working on it after the spam started happening. I lost a couple of user contributions to spam early on, so I haven't been promoting it at all, either. I do plan to develop it if I can repel the spam, though.
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1
- -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1
Moin Elisa,
On Sunday 30 July 2006 18:47, elisa.cooper@breakingranks.net wrote:
Hi, Tels -
Have you looked at the various extensions that let you block spam before it happens?
I haven't added any extensions at all. Where do I find these?
Always use google and use the first hit! :-)
Google for "mediawiki extensions"
http://meta.wikimedia.org/wiki/Category:Mediawiki_Extensions
Google for "block spam mediawiki"
http://meta.wikimedia.org/wiki/Anti-spam_Features
Also have a look at:
http://www.breakingranks.net/rankism_wiki/index.php?title=Special:Listusers
Seems the spammers simple register themselves as users on your system, so you might want to restrict user creation and/or disallow anonymous edits, too.
Hope this heps,
Tels
- - -- Signed on Sun Jul 30 21:39:06 2006 with key 0x93B84C15. Visit my photo gallery at http://bloodgate.com/photos/ PGP key on http://bloodgate.com/tels.asc or per email.
I'm a Wei-wei-wei-wei-wei-wow-wow-wow-wow-wow-wow-wizzzaahrd...
Hi, Tel -
I don't understand what's going on with all those usernames. I checked their contributions, and there's nothing there. How do these enable the spam? I don't want to accidentally block a real user, either.
Also, if I both block anon edits and block creation of new users, how will anyone be able to contribute to the wiki?
Please forgive me if these are "duh" questions. I'm just getting started with wikis.
~ Elisa
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1
- -----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1
Moin Elisa,
On Sunday 30 July 2006 18:47, elisa.cooper@breakingranks.net wrote:
Hi, Tels -
Have you looked at the various extensions that let you block spam before it happens?
I haven't added any extensions at all. Where do I find these?
Always use google and use the first hit! :-)
Google for "mediawiki extensions"
http://meta.wikimedia.org/wiki/Category:Mediawiki_Extensions
Google for "block spam mediawiki"
http://meta.wikimedia.org/wiki/Anti-spam_Features
Also have a look at:
http://www.breakingranks.net/rankism_wiki/index.php?title=Special:Listusers
Seems the spammers simple register themselves as users on your system, so you might want to restrict user creation and/or disallow anonymous edits, too.
Hope this heps,
Tels
Signed on Sun Jul 30 21:39:06 2006 with key 0x93B84C15. Visit my photo gallery at http://bloodgate.com/photos/ PGP key on http://bloodgate.com/tels.asc or per email.
I'm a Wei-wei-wei-wei-wei-wow-wow-wow-wow-wow-wow-wizzzaahrd...
- -----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.2 (GNU/Linux)
iQEVAwUBRM0LU3cLPEOTuEwVAQIKrAf+N8SKFoIlHhBhQJGEBrQ96a7THK56op1/ w72yuXq9k2cuvBUq3RVnMUAjJoUTu97DAsqEZvqMtyfGEsDoJuZWJc4ARSva3Kat vjlFE5Tkn/bT66sr7eDaiaTO0KtKrNmYVsZ7tfO+Zp6YU/FKxmKB9B0R1rI9JUpA No4DtOaxOXlPo1uJi0wA5mQNNfsiAlE6EGuIK7FF3O2vWRDWKmcdqUY4P+KRMPky 3YMzmqYQEf4U7GhWQzQ5QyWmvgsKnMjJ1SmP3+NOnlz5sQKFGf9th8Gnp/lluW/W e1ghiHB+kgvEBVXlYKDfSaeq605dm2gMOKyMLgyGN5EvRkkTxdRE2g== =M1Pr
- -----END PGP SIGNATURE-----
-----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.2 (GNU/Linux)
iQEVAwUBRM0LvHcLPEOTuEwVAQKjDgf/TMFS5ZZe+hQwdm8/VB76NyBhTPhJc9kw vXS/evNZuTmc4Jccjm6YVohsqQszyAwa8ogTs66YX8ci9RAERXKS7ug3cJwrDMsB Vf4GhDkKj+DZHbt2dDdohukhb9eGmjZE2TURQ/HnX91DapnVCZNODZiSKlJb6Vnh kqyr++X+ZETA9joS9qZ/KWcd+buytNRqR4D+NGd69FY9NcxiCxoaLWMXEhXy/LG/ 86aCqlMxcFQKxW3cN4R6IuLk5mJ73URYel5y8tY4OfJ0oapk+7oEVfmPZLzhMnw3 pMMvhdDziY60uPUf++gRFJfqTKqc7zl5U/xET+/gYeyPRFczCkCzew== =2IU+ -----END PGP SIGNATURE----- _______________________________________________ MediaWiki-l mailing list MediaWiki-l@Wikimedia.org http://mail.wikipedia.org/mailman/listinfo/mediawiki-l
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1
Moin Elisa,
On Monday 31 July 2006 01:17, elisa.cooper@breakingranks.net wrote:
Hi, Tel -
I don't understand what's going on with all those usernames. I checked their contributions, and there's nothing there. How do these enable the spam? I don't want to accidentally block a real user, either.
Thats a though question, but usually spammers reserve usernames in advance, because on some wikis you can only do certain edits/things after your username is of a certain age.
Why I think these were spammers is because they used the form [randomword][randomnumber]@[yourowndomain] and I do think legitimate users wouldnt do this. I mean, these email adresses actually exist? Probably not :)
Also, if I both block anon edits and block creation of new users, how will anyone be able to contribute to the wiki?
You can block certain usernames (like the ones I mention) with some extension, I forgot it's name. That's a good idea if you allow anyone to register freely, because some clown might try to register "admin" or "AMlNlSTRATOR" and cause grief for others, too :D
Anon edits can (should IMHO for smaller wikis) be blocked so that only users can edit. (anon edits are not, well, creditable as edits by someone with a verified email address).
Also, you should enable that the users email is verified before allowing the user to be created. That would cut out certain bogus usernames. (I think everyone on the internet should have by now an email address to sign up for your wiki :) In addition, it gives real users the change to be contacted by you.
In addition, you can set it up so that only the admin can add users, but then users need to email you before they can join and edit.
Here is a wiki where only admins can create new users:
http://cedegawiki.sweetleafstudios.com/
As far as I know, it has been virtually spamfree all the time.
It's all a trade-off between keeping the spammers out, and letting the users easily in. You have to find a compromise for your wiki.
Please forgive me if these are "duh" questions. I'm just getting started with wikis.
Don't worry we all started sometime :-)
If you have any more questions, you can also contact me offlist.
Best wishes,
Tels
- -- Signed on Mon Jul 31 01:22:19 2006 with key 0x93B84C15. Visit my photo gallery at http://bloodgate.com/photos/ PGP key on http://bloodgate.com/tels.asc or per email.
". . . my work, which I've done for a long time, was not pursued in order to gain the praise I now enjoy, but chiefly from a craving after knowledge, which I notice resides in me more than in most other men. And therewithal, whenever I found out anything remarkable, I have thought it my duty to put down my discovery on paper, so that all ingenious people might be informed thereof." -- Antony van Leeuwenhoek. Letter of June 12, 1716
Hi, Tels -
These are all great suggestions. I'm going to embark on the great anti-spam project tonight!
~ Elisa
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1
Moin Elisa,
On Monday 31 July 2006 01:17, elisa.cooper@breakingranks.net wrote:
Hi, Tel -
I don't understand what's going on with all those usernames. I checked their contributions, and there's nothing there. How do these enable the spam? I don't want to accidentally block a real user, either.
Thats a though question, but usually spammers reserve usernames in advance, because on some wikis you can only do certain edits/things after your username is of a certain age.
Why I think these were spammers is because they used the form [randomword][randomnumber]@[yourowndomain] and I do think legitimate users wouldnt do this. I mean, these email adresses actually exist? Probably not :)
Also, if I both block anon edits and block creation of new users, how will anyone be able to contribute to the wiki?
You can block certain usernames (like the ones I mention) with some extension, I forgot it's name. That's a good idea if you allow anyone to register freely, because some clown might try to register "admin" or "AMlNlSTRATOR" and cause grief for others, too :D
Anon edits can (should IMHO for smaller wikis) be blocked so that only users can edit. (anon edits are not, well, creditable as edits by someone with a verified email address).
Also, you should enable that the users email is verified before allowing the user to be created. That would cut out certain bogus usernames. (I think everyone on the internet should have by now an email address to sign up for your wiki :) In addition, it gives real users the change to be contacted by you.
In addition, you can set it up so that only the admin can add users, but then users need to email you before they can join and edit.
Here is a wiki where only admins can create new users:
http://cedegawiki.sweetleafstudios.com/
As far as I know, it has been virtually spamfree all the time.
It's all a trade-off between keeping the spammers out, and letting the users easily in. You have to find a compromise for your wiki.
Please forgive me if these are "duh" questions. I'm just getting started with wikis.
Don't worry we all started sometime :-)
If you have any more questions, you can also contact me offlist.
Best wishes,
Tels
Signed on Mon Jul 31 01:22:19 2006 with key 0x93B84C15. Visit my photo gallery at http://bloodgate.com/photos/ PGP key on http://bloodgate.com/tels.asc or per email.
". . . my work, which I've done for a long time, was not pursued in order to gain the praise I now enjoy, but chiefly from a craving after knowledge, which I notice resides in me more than in most other men. And therewithal, whenever I found out anything remarkable, I have thought it my duty to put down my discovery on paper, so that all ingenious people might be informed thereof." -- Antony van Leeuwenhoek. Letter of June 12, 1716
-----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.2 (GNU/Linux)
iQEVAwUBRM1BdncLPEOTuEwVAQKvTAf/VJjwULYp87i4027jvJ3U70XVwqXe3g0/ 1Sq+qk9/kIOx8MTjxjy8qcjAGuerbP0pIRfWzqPFlqQ7ihNfPYbcYmUgRRSjmXzL kYbQcqT5DkMiE9LXsSla6dKqyc5gv1QT3Tj6aFBHGzvhZEVXQmKm3+jM7JwTEeUN 0k/IwtftkYq5sIY18+qf5rWbuTn7jBmgzoDHBYop/74KPDGJXpuB9P5zzbmdQKmB J7FZfGfFaixU/8o/TIn/kEHP/FZfxgNupZxQiZys26xKrWiDcv/wJwhWkPpifoay 7yu7gklX8GOxKdiS7z7qvauEFQ4JB8HoDRRat00ykTxNXZ9mh23QiQ== =JXCG -----END PGP SIGNATURE----- _______________________________________________ MediaWiki-l mailing list MediaWiki-l@Wikimedia.org http://mail.wikipedia.org/mailman/listinfo/mediawiki-l
On 7/31/06, elisa.cooper@breakingranks.net elisa.cooper@breakingranks.net wrote:
These are all great suggestions. I'm going to embark on the great anti-spam project tonight!
Bad Behavior: http://meta.wikimedia.org/wiki/Bad_Behavior_extension http://www.homelandstupidity.us/software/bad-behavior/installing-and-using-b...
Spam Blacklist: http://meta.wikimedia.org/wiki/SpamBlacklist_extension
LocalSettings.php settings for $wgSpamRegex
Now the only spam I get is "manual". I allow anonymous editing again, without much fear.
mediawiki-l@lists.wikimedia.org