Last modified: 2013-08-03 13:02:37 UTC

Wikimedia Bugzilla is closed!

Wikimedia migrated from Bugzilla to Phabricator. Bug reports are handled in Wikimedia Phabricator.
This static website is read-only and for historical purposes. It is not possible to log in and except for displaying bug reports and their history, links might be broken. See T47722, the corresponding Phabricator task for complete and up-to-date bug report information.
First Last Prev Next    This bug is not in your last search results.
Bug 45722 - Have createuser variables include the email address (to potentially block re-registering)
Have createuser variables include the email address (to potentially block re-...
Status: NEW
Product: MediaWiki extensions
Classification: Unclassified
AbuseFilter (Other open bugs)
unspecified
All All
: Normal enhancement with 2 votes (vote)
: ---
Assigned To: Nobody - You can work on this!
:
: 52480 (view as bug list)
Depends on:
Blocks:
  Show dependency treegraph
 
Reported: 2013-03-05 05:05 UTC by Thomas Jones-Low
Modified: 2013-08-03 13:02 UTC (History)
3 users (show)

See Also:
Web browser: ---
Mobile Platform: ---
Assignee Huggle Beta Tester: ---

Attachments
Add an attachment (proposed patch, testcase, etc.)

Description Thomas Jones-Low 2013-03-05 05:05:53 UTC 
I am dealing with a constant wave of abuse from a user who creates a new account with random names but the same email address. It would be great if the AF variables included, especially for the createaccount action, an user_email for filtering action. 

This is the email address the user enters for creating their account, not the text of any email's they are sending.
Comment 1 Sam Reed (reedy) 2013-03-05 18:45:16 UTC 
I'm not sure how much of a good idea exposing a users email addresses is. Especially as if there is a filter hit, it will be a logged value and viewable..
Comment 2 Thomas Jones-Low 2013-03-14 16:03:54 UTC 
We (the admins of our wiki) had a long discussion about this. We'd like to expand our request to include a variable (e.g. $wgAbuseFilterUseEmailAddress) defaulted to false which controls the use of the email address as a variable. False means no variable, true means there is. 

From the perspective of our wiki, the Abuse Log is visible only to sysops which is a small group trusted not to abuse the availability of the email address.  But we understand that on a larger wiki the viewership of the abuse log and the expectations of privacy are different.
Comment 3 Andre Klapper 2013-08-03 12:58:12 UTC 
*** Bug 52480 has been marked as a duplicate of this bug. ***
Note You need to log in before you can comment on or make changes to this bug.
First Last Prev Next    This bug is not in your last search results.

Navigation
Links