Wikimedia Forum/Archives/2019-06

Latest comment: 5 years ago by Xaosflux in topic BugMeNot shared logins

A proposal for WikiJournals to become a new sister project

Over the last few years, the WikiJournal User Group has been building and testing a set of peer reviewed academic journals on a mediawiki platform. The main types of articles are:

  • Existing Wikipedia articles submitted for external review and feedback (example)
  • From-scratch articles that, after review, are imported to Wikipedia (example)
  • Original research articles that are not imported to Wikipedia (example)

Proposal: WikiJournals as a new sister project

From a Wikipedian point of view, this is a complementary system to Featured article review, but bridging the gap with external experts, implementing established scholarly practices, and generating citable, doi-linked publications.

Please take a look and support/oppose/comment! T.Shafee(Evo﹠Evo)talk 06:07, 3 June 2019 (UTC)

Blocking of T-Mobile

Using T-Mobile US as a phone hotspot in US to Windows PC. Message leaky colo + open proxy at 199.189.108.73. IP adress 199.189.106.246, and intervall blocked 199.189.104.0/21. Why is the US carrier T-Moble blocked? Maundwiki (talk) 15:08, 7 June 2019 (UTC)

Maundwiki see the WHOIS data: [1]. It is a hosting provider, and the various proxychecking services say so and the WHOIS data agrees. It does not appear to be T-mobile. Could you have a VPN active on your phone? TonyBallioni (talk) 23:02, 7 June 2019 (UTC)

Attack pages

Hi Asish, is it acceptable to create attack pages at Meta when expelled from sister projects? E.g. User:Slowking4/wikicommons has cancer and User:Slowking4/commons. Jcb (talk) 14:51, 24 June 2019 (UTC)

@Jcb: If you like, you may nominate the pages for a deletion discussion by following the instructions at Meta:Requests for deletion. See also Meta:Inclusion policy and Meta:Deletion policy. GMGtalk 17:26, 24 June 2019 (UTC)
As GMG says, follow meta's deletion request process if you think that a page is out of scope, and where they have been used as global user pages we have been particularly stringent. That said floating a discussion in this forum rather than a local query to a meta: forum is a little bit of kite-flying.

I am uncertain that linking to existing conversations at Commons could be called attack pages, nor reasonably quoting users' commentaries about a person when those quotes still exist at Commons.  — billinghurst sDrewth 21:28, 24 June 2019 (UTC)

This section was archived on a request by:  — billinghurst sDrewth 23:18, 13 July 2019 (UTC)

Joint project

Please indicate the procedure for organizing a joint project between the Wikimedia Foundation (https://ru.wikibooks.org/) and the Ural Federal University. A project like Wikinews: Become a private correspondent!. (We will write joint wikibooks) --Леонид Макаров (talk) 07:08, 2 June 2019 (UTC)

Леонид Макаров, you might want to contact User:Jami (Wiki Ed), or talk to that community directly by leaving a message at b:ru:Викиучебник:Общий форум. b:ru:Участник:Леонид Макаров could tell you what kind of contributions would be helpful. Whatamidoing (WMF) (talk) 14:46, 14 June 2019 (UTC)
Thanks. Now I make the Wikibooks (Economics of enterprise, Budgeting). I think that it turns out something interesting.--Леонид Макаров (talk) 15:03, 14 June 2019 (UTC)

Hi

You said People of all ages can go The the meeting that means even children can go to. You are registered as a US incorporation and the COPPA law must apply for your Foundation. Fungster (talk) 06:23, 20 June 2019 (UTC)

What meeting? Ruslik (talk) 12:18, 5 July 2019 (UTC)

BugMeNot shared logins

Bugmenot have disabled sharing logins for a few Wikipedias. This is good: sharing accounts is not allowed. However, they have not disabled:

  • meta
  • ar
  • ba
  • be
  • cz
  • hi
  • ja
  • no
  • pt
  • simple (simple English)
  • zh

...and those are just the ones I checked. For at least two I found shared accounts listed, and one that I tested was a functioning login. With SUL, these compromised accounts have access to any wikpedia project. Will someone from the Foundation please contact BugMeNot and make certain that sharing login information for all Wikipedias is disabled, and get a record from them of all wikipedia.org accounts which have been listed so that they can be globally locked? Thank you. BlackcurrantTea (talk) 00:14, 7 June 2019 (UTC)

BlackcurrantTea, not sure if this has been addressed, but concerns about account compromise can be dealt with at SRG, where a steward can look at locking the accounts if warranted. TonyBallioni (talk) 18:43, 20 June 2019 (UTC)
TonyBallioni, thanks for the suggestion. Unfortunately, nothing's changed. Whilst I could test each Wikipedia and report the accounts I find, new accounts can still be added, making it a Sisyphean task. Until BugMeNot changes their policy, the problem will remain. I filled in their form to remove simple.wikipedia.org before I posted the above; 18 days later they've not removed it. BlackcurrantTea (talk) 10:49, 25 June 2019 (UTC)
Just FYI - The Security Team and Trust and Safety are aware of this and there is currently a private Phab task (T227720) where we're tracking the issue. We've automated searching bugmenot.com for various wikimedia domains and are in the process of issuing takedown requests and locking any potentially affected accounts. Please feel free to reach out to security@wikimedia.org with any other questions or concerns. SBassett (WMF) (talk) 16:25, 11 July 2019 (UTC)
@BlackcurrantTea: Sorry for butting in here: what is BugMeNot? Just wondering if it has anything to do with the fact that I must login individually to any wiki-project that I visit now? I used to be able to only login once on any wiki-project, and my login would carry to all other wikis. Now I must login all over the place. For example, if I go wikidata next, I will have to login there too, which means 3 logins already, and I have not done any real work yet, sigh... Ottawahitech (talk) 14:43, 18 July 2019 (UTC)
@Ottawahitech: it is a website where people share "throw away" usernames and passwords. For your issue, check that you are accepting our cookies. — xaosflux Talk 15:49, 18 July 2019 (UTC)
@Ottawahitech and Xaosflux: Fwiw, I have in recent weeks had this same problem with having to log into each project separately (and I didn't change my configuration, though I wonder about unsolicited consequences of software "updates") — but I've had this problem only when using Firefox; I occasionally use Opera, and with that browser, logging into one project still logs into all of them. --Pi zero (talk) 17:36, 18 July 2019 (UTC)
@Pi zero: try some of the 'standard' web cleanups: clear all your cache, temporary files, cookies - and try again. Check if you have extensions that are blocking javascript, cookies, localstorage. — xaosflux Talk 17:38, 18 July 2019 (UTC)