Re: Wiki 2FA

On 01/24/2016 01:32 AM, Greg Sabino Mullane wrote:
> 
> 
>> I dunno.  I was astonished that they came back a second time after we'd
>> once thrown them off and cleaned up the mess; you'd think they'd realize
>> that that would just happen again.  I think it may have been an
>> intentional attack on the PG project as such, not just drive-by spamming.
>> (If so, and if the goal was to complicate our lives, they succeeded.)
> 
> I doubt PG was targeted: MediaWiki was. It's a popular and easy spam vector
> these days, and reminds me of Windows in the old days: you can setup a
> brand new wiki and be guaranteed a spammer before you even start advertising
> your site. And once you are on a list, expect to never be able to fully open
> your wiki again.

yeah :(

> 
> The captcha war is absolutely being won by the spammers at the moment, so
> I think our current solution is probably the best tradeoff we can get.
> Although it would be nice to be able to point people the #postgresql
> channel for editor rights too.

well the blurb on the wiki clearly states you can ask in the channel as
well, though it might actually take a bit longer for granting access
there becase not all of us are monitoring the channel that closely.



Stefan