For those who haven't yet heard, someone has been hitting en.wikipedia with what appears to be an attack looking for admins with weak passwords - "password", "password1", "[username]", etc. Then they go on a predictable spree; deleting the main page, mostly. I think we're down four so far...
It's possible someone might try this in the near future on other wikis - a lot of vandals tend to only go for en, but you never know, this one might be feeling multicultural!
This might be a good time to spread the word and ask your admins to consider checking their passwords are good and secure - after all, it's good practice anyway.
On 07/05/07, Andrew Gray shimgray@gmail.com wrote:
It's possible someone might try this in the near future on other wikis
- a lot of vandals tend to only go for en, but you never know, this
one might be feeling multicultural! This might be a good time to spread the word and ask your admins to consider checking their passwords are good and secure - after all, it's good practice anyway.
The devs are running a password cracker over the en:wp admin list, 1200 users - other large wikis probably need to request the same. The vandalism on en:wp included putting the famous Tubgirl picture in the sitenotice, so, um, you probably don't want that to happen to you.
- d.
wikipedia-l@lists.wikimedia.org