On Thu, 2009-06-04 at 17:04 +0100, Andrew Garrett wrote:
When did we start treating our administrators as potentially malicious attackers? Any administrator could, in theory, add a cookie-stealing script to my user JS, steal my account, and grant themselves any rights they please.
We trust our administrators. If we don't, we should move the editinterface right further up the chain.
They are potentially malicious attackers, but we nevertheless trust them not to do bad things. "We" in this case refers only to most of Wikimedia, I guess, since there has been no shortage of paranoia both on bugzilla and this list recently - a sad state of affairs to be sure.
-Mike