[Foundation-l] and what if...

David Moran fordmadoxfraud at gmail.com
Fri Dec 12 15:51:37 UTC 2008 

I absolutely agree with Judson that we should be devoting exactly zero of
our material and mental resources to thinking of ways to assist in the work
of censors.  The problems presented in this example are almost entirely
those of a national legislature comfortable with allowing private bodies to
modify free speech for 95% of their citizens.

FMF



On 12/12/08, Robert Rohde <rarohde at gmail.com> wrote:
>
> On Fri, Dec 12, 2008 at 6:43 AM, Thomas Dalton <thomas.dalton at gmail.com>
> wrote:
> >>> Indeed, I don't see any alternative way to block anonymous users. Even
> >>> forcing people to register wouldn't help since, without IP addresses,
> >>> we can't block account creation by people creating new accounts every
> >>> time one gets block. What we need to do is put pressure on ISPs to use
> >>> XFF whenever they are using proxies. The fact that people couldn't
> >>> edit during the block has nothing to do with censorship, it's just a
> >>> technical issue that can and must be fixed by ISPs.
> >>
> >> This is probably off-topic for this list, but IP blocking is actually
> >> inefective in exactly the same way as it would be just blocking
> >> accounts. When you block a dynamic IP a vandal can reboot and he/she
> >> usually get new dynamic IP from his/her ISP. So you have to block
> >> another IP number. If the vandal is very  determined, you have to
> >> finally block entire IP range, cutting off at least several hundreds
> >> other people, and even if you do this vandal can still go to internet
> >> caffe nearby which uses IP's from another ISP, so if you spot him/her
> >> you have to block IP of the caffe. In some extreme cases you finally
> >> end-up blocking IP ranges of all major ISP's from the area where
> >> vandal operates...
> >>
> >> Honestly saying I have no ready to use receipe how to replace IP
> >> blocking. But IWF case have just shown that in the future it has to be
> >> replaced by something smarter or we end up in blocking all major ISP's
> >> customers all over the world.
> >
> > I see no evidence that anything smarter exists. The only thing we know
> > about anonymous users are their IP addresses, so that's all we can use
> > to block them. It is theoretically impossible to do anything else, as
> > far as I can see.
>
> Long-time ago, I suggested adding a short-duration cookie whenever a
> block was triggered that would allow the software to detect the most
> obvious IP jumping vandals (asumming they used the same browser on the
> same machine each time).  It doesn't get at the bulk of Tomek's
> criticism, but it does fall in the other-things-we-could-do category.
>
> -Robert Rohde
>
> _______________________________________________
> foundation-l mailing list
> foundation-l at lists.wikimedia.org
> Unsubscribe: https://lists.wikimedia.org/mailman/listinfo/foundation-l
>

More information about the foundation-l mailing list