On 13 April 2012 03:49, Andrew Garrett <agarrett(a)wikimedia.org> wrote:
Now, there are things that sysops can do that
aren't so easily reversible.
You could surreptitiously add site JS that captured tokens from checkusers
and released large amounts of sensitive data, so it's not exactly without
merit. But I don't think it's justifiable to dismiss discussion about
whether extra security is "worth it".
Are history merges easily reversible yet?