David Gerard wrote:
Jack Lutz (jack-lutz@comcast.net) [050412 14:10]:
I think the log of CheckUser usage must be public; there is no otherwise no check on abuse.
Unfortunately, that will give everyone a damn good idea of what people's IPs are. At present, all access show on the page, so Tim and I can see what each other have accessed. (He's used it precisely twice, to test it ;-)
I put the log in a flat file on NFS (/home/wikipedia/logs/checkuser.log), partly to make it easy for suspicious developers to check up on what the users have been doing with it. So it's not just two people overseeing each other. I'd prefer it if more people could view the log, but for privacy reasons we can't make it public at this stage. If there's sufficient demand, we could probably make partial logs available -- say, just the usernames but not the IP addresses.
-- Tim Starling