Page MenuHomePhabricator

Urbanecm
Wikimedia StewardAdministrator

Projects (39)

Today

  • Clear sailing ahead.

Tomorrow

  • Clear sailing ahead.

Sunday

  • Clear sailing ahead.

User Details

User Since
Oct 26 2015, 4:00 PM (478 w, 3 d)
Roles
Administrator
Availability
Available
IRC Nick
Urbanecm
LDAP User
Urbanecm
MediaWiki User
Martin Urbanec [ Global Accounts ]

Recent Activity

Mon, Dec 16

Urbanecm added a comment to T382082: Investigate: How would global partial blocks for IP reveal interact with other types of block?.

We only want to allow global IP reveal blocks, not local ones, because if someone is abusing IP reveal on any wiki, they should not be able to use it on other wikis.

This is basically what we were discussing with Legal yesterday. I believe local IP reveal blocks should be permitted because if a local admin or Checker detects abuse, they should not have to wait for a steward or global sysop to take action against them.

Per policy, only Stewards and Trust & Safety are permitted to remove access.

Mon, Dec 16, 11:59 AM · Trust and Safety Product Team, Trust and Safety Product Sprint (Sprint Chimes (Dec. 9 - Jan. 17)), Temporary accounts (Major pilot wiki deployment), CheckUser

Tue, Dec 10

JJMC89 awarded T381875: Make IP Reveal log accessible via Special:Log/ipreveal a Like token.
Tue, Dec 10, 3:14 PM · Temporary accounts, Trust and Safety Product Team
JJMC89 awarded T381874: Rename IP Reveal log to a more descriptive name a Like token.
Tue, Dec 10, 3:14 PM · Trust and Safety Product Team, Temporary accounts
Urbanecm created T381875: Make IP Reveal log accessible via Special:Log/ipreveal.
Tue, Dec 10, 12:56 PM · Temporary accounts, Trust and Safety Product Team
Urbanecm created T381874: Rename IP Reveal log to a more descriptive name.
Tue, Dec 10, 12:50 PM · Trust and Safety Product Team, Temporary accounts

Mon, Dec 9

Urbanecm added a comment to T381769: Potential RCE in Extension:ArticleFeedbackv5.

I don't think this is an (immediate) problem. As far as I understand things, unserialize only poses a problem when it is given an untrusted input (as it can construct objects, and that involves running code). ArticleFeedback reads logging.log_params, which should be (reasonably) trusted.

Mon, Dec 9, 12:59 PM · affects-Miraheze, ArticleFeedbackv5, Security

Sun, Dec 8

Urbanecm added a comment to T381273: toolforge jobs load errors with 404 repetatively.

Has this worked for you in the past, then started failing today?

Sun, Dec 8, 9:02 AM · cloud-services-team, Toolforge

Thu, Dec 5

Urbanecm updated subscribers of T381624: AbuseFilter should log to Special:Log/suppress when it suppresses a log entry.

@Daimona Do you have any thoughts on this?

Thu, Dec 5, 10:32 PM · AbuseFilter
Urbanecm created T381624: AbuseFilter should log to Special:Log/suppress when it suppresses a log entry.
Thu, Dec 5, 10:32 PM · AbuseFilter
Urbanecm updated subscribers of T380743: Make global blocks apply to meta wiki and remove "Also block the given user locally" feature.

This was discussed during the December Stewards meeting. Stewards agreed on continuing this, We should also add a new global block option that would control whether emails are allowed to be sent (since sending an email from the wiki is the appeal process).

Thu, Dec 5, 7:37 PM · Stewards-and-global-tools, GlobalBlocking, Trust and Safety Product Team

Mon, Dec 2

Urbanecm created T381273: toolforge jobs load errors with 404 repetatively.
Mon, Dec 2, 2:17 PM · cloud-services-team, Toolforge
Urbanecm closed T331193: [[Wikimedia:Wikinity-admin-description-item/fi]] translation issue as Resolved.

@srishakatux I am working on this task, its very easy one!

Mon, Dec 2, 9:54 AM · LPL Technical Support (LPL Technical Support (Current)), good first task, Wikinity, I18n
Restricted Application added a project to T349341: Can't pip install mysqlclient on Toolforge: cloud-services-team.

I just ran into this as well. For some reason, this works for me from Python 3.9, but not Python3.11.

Mon, Dec 2, 9:49 AM · cloud-services-team, Toolforge

Thu, Nov 28

Urbanecm added a comment to T381110: #wikimedia-traffic does not use wikimedia global bans list / wmopbot etc..

Uploaded https://gitlab.wikimedia.org/toolforge-repos/ircservserv-config/-/merge_requests/17.

Thu, Nov 28, 4:05 PM · Vuln-Misconfiguration, SecTeam-Processed, User-bd808, ircservserv, Traffic, wikimedia-irc-libera, Security-Team, Security
Urbanecm updated subscribers of T381110: #wikimedia-traffic does not use wikimedia global bans list / wmopbot etc..
Thu, Nov 28, 4:04 PM · Vuln-Misconfiguration, SecTeam-Processed, User-bd808, ircservserv, Traffic, wikimedia-irc-libera, Security-Team, Security
Urbanecm added a comment to T381110: #wikimedia-traffic does not use wikimedia global bans list / wmopbot etc..

I'm happy to help with setting this up, if someone grants me the permissions on that channel.

Thu, Nov 28, 3:19 PM · Vuln-Misconfiguration, SecTeam-Processed, User-bd808, ircservserv, Traffic, wikimedia-irc-libera, Security-Team, Security
Urbanecm added a comment to T380308: IP Information view in Special:Contributions is confusing for Temporary accounts with more than one IP.

I like it. @mszabo @Urbanecm what do you think?

Thu, Nov 28, 2:02 PM · Trust and Safety Product Sprint (Sprint Gong (November 18 - December 6)), MW-1.44-notes (1.44.0-wmf.6; 2024-12-03), Trust and Safety Product Team, Temporary accounts (Major pilot wiki deployment), IP Info

Wed, Nov 27

Urbanecm added a comment to T381028: Users deleted through Special:CentralAuth can still log in on betacluster.

Deleting a global (user) account isn't the same as deleting a user account (which we don't really do)...

Wed, Nov 27, 8:56 PM · MediaWiki-Platform-Team, MediaWiki-extensions-CentralAuth, Beta-Cluster-Infrastructure, Campaigns-Product-Team, CampaignEvents, Campaign-Registration
Urbanecm added a comment to T373818: [Epic] Guidance for discovery of IP Reveal feature.

Thank you for the ping, @KColeman-WMF! Generally, the design seem like a step towards the right direction. I am wondering about a couple of things:

Wed, Nov 27, 7:49 PM · Trust and Safety Product Sprint (Sprint Chimes (Dec. 9 - Jan. 17)), Epic, Temporary accounts (Major pilot wiki deployment)

Nov 26 2024

Urbanecm added a comment to T380743: Make global blocks apply to meta wiki and remove "Also block the given user locally" feature.

So back to the list, I can also see reasons why when blocking a network globally we wouldn't want to block 'send email' locally as that will prevent use of Special:Contact (which is used for appeals as well).

Nov 26 2024, 2:42 PM · Stewards-and-global-tools, GlobalBlocking, Trust and Safety Product Team

Nov 25 2024

Urbanecm added a comment to T380763: Description #community-consensus-needed is contradictory to common practices.

I completely agree that community consensus is not necessarily needed just because someone objects, but I also think that there are many relevant times when community consensus is legitimately needed for major changes to core or extension functionality.

Nov 25 2024, 7:05 PM · Project-Admins
Urbanecm added a comment to T380763: Description #community-consensus-needed is contradictory to common practices.

However, I disagree with the premise here entirely - the usage of the Community-consensus-needed tag means someone thinks the feature request needs a community discussion. That's different from personally disagreeing with it - I disagree with a lot of proposed features that I know are in the authority of the developers to implement or not, and usually express that with a token rather than with any tags.

Nov 25 2024, 7:01 PM · Project-Admins
Pppery awarded T380763: Description #community-consensus-needed is contradictory to common practices a Dislike token.
Nov 25 2024, 4:53 PM · Project-Admins
Urbanecm added a comment to T378401: Start running backfillLocalAccounts.php.

kludging things enough for an integration test to fake a creation of a local account on another wiki, with a global account, with the right logging table entry etc, just felt like it was too fragile.

Nov 25 2024, 4:28 PM · MW-1.44-notes (1.44.0-wmf.5; 2024-11-25), Patch-For-Review, SUL3, MediaWiki-extensions-CentralAuth, MediaWiki-Platform-Team
Urbanecm added a comment to T380763: Description #community-consensus-needed is contradictory to common practices.

Note that prior to @Frostly 2023 changes, the tag was limited to configuration changes even more explicitly. It read:

Nov 25 2024, 3:58 PM · Project-Admins
Urbanecm updated subscribers of T380763: Description #community-consensus-needed is contradictory to common practices.

Courtesy CC to @Xaosflux, who applied the tag on a feature task earlier today.

Nov 25 2024, 3:55 PM · Project-Admins
Urbanecm created T380763: Description #community-consensus-needed is contradictory to common practices.
Nov 25 2024, 3:53 PM · Project-Admins
Urbanecm removed a project from T380743: Make global blocks apply to meta wiki and remove "Also block the given user locally" feature: Community-consensus-needed.

I think this needs wider discussion, not a discord chat

Nov 25 2024, 3:38 PM · Stewards-and-global-tools, GlobalBlocking, Trust and Safety Product Team
Urbanecm added a project to T380743: Make global blocks apply to meta wiki and remove "Also block the given user locally" feature: Stewards-and-global-tools.
Nov 25 2024, 1:49 PM · Stewards-and-global-tools, GlobalBlocking, Trust and Safety Product Team
Urbanecm added a comment to T380743: Make global blocks apply to meta wiki and remove "Also block the given user locally" feature.

As of now, completing this task means submitting the block will always trigger two blocks: one global, one at meta-wiki. With the "also block locally" checkbox, this makes sense, but after this change, not so much. Can we whitelist blocks partially?

Nov 25 2024, 1:49 PM · Stewards-and-global-tools, GlobalBlocking, Trust and Safety Product Team
Urbanecm awarded T380743: Make global blocks apply to meta wiki and remove "Also block the given user locally" feature a Like token.
Nov 25 2024, 1:47 PM · Stewards-and-global-tools, GlobalBlocking, Trust and Safety Product Team
Urbanecm added a comment to T378693: Unblocking an account in Bitu causes a internal server error.

Thanks! Seems to work now :).

Nov 25 2024, 9:48 AM · Infrastructure-Foundations, Bitu

Nov 24 2024

Urbanecm added a parent task for T380687: Do not autopromote users into `checkuser-temporary-account-viewer` if they already have access through a global group: T325451: Implement: Users with right privileges are able to view IP addresses.
Nov 24 2024, 1:55 PM · Temporary accounts (Blockers to global wiki rollout), Trust and Safety Product Team
Urbanecm added a subtask for T325451: Implement: Users with right privileges are able to view IP addresses: T380687: Do not autopromote users into `checkuser-temporary-account-viewer` if they already have access through a global group.
Nov 24 2024, 1:55 PM · Trust and Safety Product Sprint (Sprint Chimes (Dec. 9 - Jan. 17)), Temporary accounts (Major pilot wiki deployment), Epic
Urbanecm changed the visibility for T355430: Allow temporary accounts to be blocked with 'hideuser'.
Nov 24 2024, 12:23 AM · MW-1.42-notes (1.42.0-wmf.16; 2024-01-30), SecTeam-Processed, Trust and Safety Product Sprint (Sprint Northumbrian smallpipes (8th Jan.‘24 - 19th Jan.'24)), Security, Trust and Safety Product Team, Temporary accounts
Urbanecm triaged T380687: Do not autopromote users into `checkuser-temporary-account-viewer` if they already have access through a global group as Low priority.

@Tchanders FTR, this is fairly low priority, but it probably should be done at some point (I recall this being expressly requested during one of the Stewards consultations, but I'm not sure where exactly). That said, this probably doesn't need to block major pilots.

Nov 24 2024, 12:21 AM · Temporary accounts (Blockers to global wiki rollout), Trust and Safety Product Team
Urbanecm created T380687: Do not autopromote users into `checkuser-temporary-account-viewer` if they already have access through a global group.
Nov 24 2024, 12:19 AM · Temporary accounts (Blockers to global wiki rollout), Trust and Safety Product Team

Nov 23 2024

Urbanecm added a project to T380578: `{{padright:}}` thinks a tilde is 6 characters (it is HTML encoded): Temporary accounts.
Nov 23 2024, 3:08 PM · Temporary accounts, MediaWiki-Parser

Nov 22 2024

Urbanecm added a comment to T380468: Improve how we log who has access to IP reveal feature.

The idea is to only assign the group after all the criteria are met (eligibility + agreed to the terms of data use), rather than immediately on meeting eligibility criteria. In effect, the logging would change in the way I suggested.

The idea makes sense, but not logging the group change is not the way to implement it. Users being in a non-implicit group without the corresponding log entry is confusing.

Nov 22 2024, 10:48 AM · Trust and Safety Product Sprint (Sprint Chimes (Dec. 9 - Jan. 17)), Temporary accounts (Major pilot wiki deployment)
Urbanecm added a comment to T380308: IP Information view in Special:Contributions is confusing for Temporary accounts with more than one IP.

I'm not seeing a bug here. We could add a help text to the IPInfo table on temporary account contributions pages to clarify that the data shown is associated with the most recently used IP address.

Nov 22 2024, 10:45 AM · Trust and Safety Product Sprint (Sprint Gong (November 18 - December 6)), MW-1.44-notes (1.44.0-wmf.6; 2024-12-03), Trust and Safety Product Team, Temporary accounts (Major pilot wiki deployment), IP Info
Urbanecm renamed T380309: IP Info reports Temporary accounts as always editing from IPv6 from IP Information used on a Temporary account may result in false information to IP Info reports Temporary accounts as always editing from IPv6.
Nov 22 2024, 10:41 AM · MW-1.44-notes (1.44.0-wmf.5; 2024-11-25), Trust and Safety Product Sprint (Sprint Gong (November 18 - December 6)), Trust and Safety Product Team, Temporary accounts, IP Info

Nov 21 2024

Urbanecm added a comment to T380468: Improve how we log who has access to IP reveal feature.

Autopromotion to checkuser-temporary-account-viewer is not logged

-1: User group changes should always be logged.

Nov 21 2024, 8:59 PM · Trust and Safety Product Sprint (Sprint Chimes (Dec. 9 - Jan. 17)), Temporary accounts (Major pilot wiki deployment)
Urbanecm added a comment to T380309: IP Info reports Temporary accounts as always editing from IPv6.
Nov 21 2024, 12:26 PM · MW-1.44-notes (1.44.0-wmf.5; 2024-11-25), Trust and Safety Product Sprint (Sprint Gong (November 18 - December 6)), Trust and Safety Product Team, Temporary accounts, IP Info
Urbanecm created T380468: Improve how we log who has access to IP reveal feature.
Nov 21 2024, 12:24 PM · Trust and Safety Product Sprint (Sprint Chimes (Dec. 9 - Jan. 17)), Temporary accounts (Major pilot wiki deployment)
Urbanecm merged T380465: Make IP info viewable from Special:IPContributions into T380466: Make IP info viewable from Special:IPContributions.
Nov 21 2024, 12:14 PM · MW-1.44-notes (1.44.0-wmf.12; 2025-01-14), Trust and Safety Product Team, Patch-For-Review, Trust and Safety Product Sprint (Sprint Chimes (Dec. 9 - Jan. 17)), Temporary accounts, IP Info
Urbanecm updated subscribers of T380466: Make IP info viewable from Special:IPContributions.
Nov 21 2024, 12:13 PM · MW-1.44-notes (1.44.0-wmf.12; 2025-01-14), Trust and Safety Product Team, Patch-For-Review, Trust and Safety Product Sprint (Sprint Chimes (Dec. 9 - Jan. 17)), Temporary accounts, IP Info
Urbanecm merged task T380465: Make IP info viewable from Special:IPContributions into T380466: Make IP info viewable from Special:IPContributions.
Nov 21 2024, 12:13 PM · Temporary accounts, IP Info
Urbanecm added a comment to T380465: Make IP info viewable from Special:IPContributions.

Recreating from personal account.

Nov 21 2024, 12:13 PM · Temporary accounts, IP Info
Urbanecm created T380466: Make IP info viewable from Special:IPContributions.
Nov 21 2024, 12:12 PM · MW-1.44-notes (1.44.0-wmf.12; 2025-01-14), Trust and Safety Product Team, Patch-For-Review, Trust and Safety Product Sprint (Sprint Chimes (Dec. 9 - Jan. 17)), Temporary accounts, IP Info

Nov 20 2024

Urbanecm removed a subtask for T380308: IP Information view in Special:Contributions is confusing for Temporary accounts with more than one IP: T380309: IP Info reports Temporary accounts as always editing from IPv6.
Nov 20 2024, 5:37 PM · Trust and Safety Product Sprint (Sprint Gong (November 18 - December 6)), MW-1.44-notes (1.44.0-wmf.6; 2024-12-03), Trust and Safety Product Team, Temporary accounts (Major pilot wiki deployment), IP Info
Urbanecm removed a parent task for T380309: IP Info reports Temporary accounts as always editing from IPv6: T380308: IP Information view in Special:Contributions is confusing for Temporary accounts with more than one IP.
Nov 20 2024, 5:37 PM · MW-1.44-notes (1.44.0-wmf.5; 2024-11-25), Trust and Safety Product Sprint (Sprint Gong (November 18 - December 6)), Trust and Safety Product Team, Temporary accounts, IP Info
Urbanecm added a comment to T380309: IP Info reports Temporary accounts as always editing from IPv6.

I'm highly suspicious of the mw.util.isIPv4Address( info.subject ) call in IPInfo. In this case, subject is the account name, not an IP address. Indeed, ~2024-14596 is not an IPv4 address, but it is not an IPv6 address either.

Nov 20 2024, 5:16 PM · MW-1.44-notes (1.44.0-wmf.5; 2024-11-25), Trust and Safety Product Sprint (Sprint Gong (November 18 - December 6)), Trust and Safety Product Team, Temporary accounts, IP Info
Urbanecm added a comment to T380309: IP Info reports Temporary accounts as always editing from IPv6.

@Urbanecm this seems to be the same issue as T380308: IP Information view in Special:Contributions is confusing for Temporary accounts with more than one IP in that the accordion is displaying information from the most recent IP in IP Info.

Nov 20 2024, 5:15 PM · MW-1.44-notes (1.44.0-wmf.5; 2024-11-25), Trust and Safety Product Sprint (Sprint Gong (November 18 - December 6)), Trust and Safety Product Team, Temporary accounts, IP Info
Urbanecm updated the task description for T380309: IP Info reports Temporary accounts as always editing from IPv6.
Nov 20 2024, 5:11 PM · MW-1.44-notes (1.44.0-wmf.5; 2024-11-25), Trust and Safety Product Sprint (Sprint Gong (November 18 - December 6)), Trust and Safety Product Team, Temporary accounts, IP Info
Urbanecm created T380364: Improve rollback for Temporary accounts.
Nov 20 2024, 12:51 PM · Temporary accounts (Blockers to global wiki rollout), Trust and Safety Product Team

Nov 19 2024

Urbanecm added a comment to T124607: Create a special page for mass global (un)block.

With the introduction of Temporary accounts, this now becomes more important. Having Special:MassGlobalBlock would allow Stewards to easily block Temporary accounts created by a LTA (example).

Nov 19 2024, 10:16 PM · Trust and Safety Product Team, Trust and Safety Product Sprint (Sprint Chimes (Dec. 9 - Jan. 17)), MW-1.44-notes (1.44.0-wmf.8; 2024-12-17), Patch-For-Review, Temporary accounts, User-Tks4Fish, GlobalBlocking, Stewards-and-global-tools
Urbanecm added a project to T124607: Create a special page for mass global (un)block: Temporary accounts.
Nov 19 2024, 10:13 PM · Trust and Safety Product Team, Trust and Safety Product Sprint (Sprint Chimes (Dec. 9 - Jan. 17)), MW-1.44-notes (1.44.0-wmf.8; 2024-12-17), Patch-For-Review, Temporary accounts, User-Tks4Fish, GlobalBlocking, Stewards-and-global-tools
Urbanecm added a comment to T378401: Start running backfillLocalAccounts.php.

@ArielGlenn asked me to take a look at the changes here. My understanding is that the backfilling would attempt to determine the IP for the creator via CheckUser, and that would work (per @JJMC89's request) for both self-created accounts and assisted-created accounts. Should this fail (due to a CU bug, for example), then the account would still be created, but using 127.0.0.1 as a placeholder IP.

Nov 19 2024, 7:00 PM · MW-1.44-notes (1.44.0-wmf.5; 2024-11-25), Patch-For-Review, SUL3, MediaWiki-extensions-CentralAuth, MediaWiki-Platform-Team
Urbanecm created T380311: Special:IPInfo uses non-existing i18n messages.
Nov 19 2024, 6:21 PM · MW-1.44-notes (1.44.0-wmf.8; 2024-12-17), Trust and Safety Product Sprint (Sprint Chimes (Dec. 9 - Jan. 17)), Temporary accounts, IP Info
Urbanecm added a comment to T380308: IP Information view in Special:Contributions is confusing for Temporary accounts with more than one IP.

I think IP Info should not pretend it is able to merge information about different IPs together. I think it would be reasonable to restrict ourselves to a link to Special:IPInfo, which can list all the different IPs and data for it. For some reason, Special:IPInfo contains far less details than IP Contributions itself.

Nov 19 2024, 6:18 PM · Trust and Safety Product Sprint (Sprint Gong (November 18 - December 6)), MW-1.44-notes (1.44.0-wmf.6; 2024-12-03), Trust and Safety Product Team, Temporary accounts (Major pilot wiki deployment), IP Info
Urbanecm added a parent task for T380309: IP Info reports Temporary accounts as always editing from IPv6: T380308: IP Information view in Special:Contributions is confusing for Temporary accounts with more than one IP.
Nov 19 2024, 6:17 PM · MW-1.44-notes (1.44.0-wmf.5; 2024-11-25), Trust and Safety Product Sprint (Sprint Gong (November 18 - December 6)), Trust and Safety Product Team, Temporary accounts, IP Info
Urbanecm added a subtask for T380308: IP Information view in Special:Contributions is confusing for Temporary accounts with more than one IP: T380309: IP Info reports Temporary accounts as always editing from IPv6.
Nov 19 2024, 6:17 PM · Trust and Safety Product Sprint (Sprint Gong (November 18 - December 6)), MW-1.44-notes (1.44.0-wmf.6; 2024-12-03), Trust and Safety Product Team, Temporary accounts (Major pilot wiki deployment), IP Info
Urbanecm created T380309: IP Info reports Temporary accounts as always editing from IPv6.
Nov 19 2024, 6:17 PM · MW-1.44-notes (1.44.0-wmf.5; 2024-11-25), Trust and Safety Product Sprint (Sprint Gong (November 18 - December 6)), Trust and Safety Product Team, Temporary accounts, IP Info
Urbanecm created T380308: IP Information view in Special:Contributions is confusing for Temporary accounts with more than one IP.
Nov 19 2024, 6:07 PM · Trust and Safety Product Sprint (Sprint Gong (November 18 - December 6)), MW-1.44-notes (1.44.0-wmf.6; 2024-12-03), Trust and Safety Product Team, Temporary accounts (Major pilot wiki deployment), IP Info

Nov 18 2024

Urbanecm added a comment to T380221: Allow authorised users to see IP Info for actors if the IP exists in the CheckUser or AbuseFilter tables, or has contributions.

I think this is a duplicate of T374718

Nov 18 2024, 10:55 PM · Temporary accounts (Major pilot wiki deployment), Trust and Safety Product Sprint (Sprint Chimes (Dec. 9 - Jan. 17)), Trust and Safety Product Team, IP Info
Izno awarded T380221: Allow authorised users to see IP Info for actors if the IP exists in the CheckUser or AbuseFilter tables, or has contributions a Like token.
Nov 18 2024, 7:57 PM · Temporary accounts (Major pilot wiki deployment), Trust and Safety Product Sprint (Sprint Chimes (Dec. 9 - Jan. 17)), Trust and Safety Product Team, IP Info
Urbanecm updated subscribers of T380225: Ipoid does not provide same info as Spur.

@kostajh I remember we talked about IPoid together. Do you have any thoughts on why it might do this?

Nov 18 2024, 7:44 PM · Trust and Safety Product Team, iPoid-Service, IP Info
Urbanecm added a comment to T380225: Ipoid does not provide same info as Spur.

At first, I thought this might be because IPoid takes time to ingest all data. However, for this IP in particular, this was first observed on November 15 (3 days ago). According to the quoted IPoid results, the data was last updated at 1731947776 Epoch time, which is Monday, November 18, 2024 4:36:16 PM GMT (aka 3 hours ago). So, updating seems to work, but we are getting different data for some reason. Why?

Nov 18 2024, 7:42 PM · Trust and Safety Product Team, iPoid-Service, IP Info
Urbanecm created T380225: Ipoid does not provide same info as Spur.
Nov 18 2024, 7:41 PM · Trust and Safety Product Team, iPoid-Service, IP Info
Urbanecm added a comment to T334625: Should IP Info work on temporary editors with no extant edits?.

@Niharika what do you think we should do here?

Nov 18 2024, 7:35 PM · Temporary accounts, IP Info
Urbanecm added a comment to T354933: Can't view IP info for an IP address whose all edits are blocked by abuse filter.

xref T380221: Allow authorised users to see IP Info for actors if the IP exists in the CheckUser or AbuseFilter tables, or has contributions

Nov 18 2024, 7:33 PM · AbuseFilter, IP Info
Urbanecm renamed T380221: Allow authorised users to see IP Info for actors if the IP exists in the CheckUser or AbuseFilter tables, or has contributions from Allow authorised users to query IP Info on actors with only deleted edits to Allow authorised users to query IP Info for any actors.
Nov 18 2024, 7:31 PM · Temporary accounts (Major pilot wiki deployment), Trust and Safety Product Sprint (Sprint Chimes (Dec. 9 - Jan. 17)), Trust and Safety Product Team, IP Info
Urbanecm added a comment to T374718: Provide an ip information lookup tool for arbitrary targets making use of external subscriptions for WMF wikis.

xref T380221: Allow authorised users to see IP Info for actors if the IP exists in the CheckUser or AbuseFilter tables, or has contributions (and especially T380221#10333285, where i suggest allowing queries for any IP)

Nov 18 2024, 7:31 PM · Trust and Safety Product Team, Stewards-and-global-tools, Trust-and-Safety, IP Info
Urbanecm added a comment to T380221: Allow authorised users to see IP Info for actors if the IP exists in the CheckUser or AbuseFilter tables, or has contributions.

Personally, I'd be open to removing the restriction for good, and allowing people to query IP Info for any IP (Temporary account), regardless of whether it actually edited. This might seem unnecessary, but IPs often make an action that is rejected prior to saving (by an AbuseFilter, spam filter or the like). When looking at those events, IP Info data can be useful, but cannot be generated natively. This is even more visible in the Temporary accounts world – there is always some reason for a Temporary account creation, and that reason always is "the user attempted to make a write action". Sometimes, that attempt is not successful, but that can be a valid reason to want to see IP Info data. Given this and the other is very similar to each other, I'm not filling a separate task for "allow data to be queried for any actor", but I do see a lot of usecases where that would be helpful.

Nov 18 2024, 7:29 PM · Temporary accounts (Major pilot wiki deployment), Trust and Safety Product Sprint (Sprint Chimes (Dec. 9 - Jan. 17)), Trust and Safety Product Team, IP Info
Urbanecm added a comment to T371627: IPInfo allows retrieving IP data for IPs that have never edited on the wiki.

xref T380221: Allow authorised users to see IP Info for actors if the IP exists in the CheckUser or AbuseFilter tables, or has contributions, where I suggest widening the restriction (and in T380221#10333285, removing it altogether).

Nov 18 2024, 7:28 PM · IP Info
Urbanecm added a comment to T380221: Allow authorised users to see IP Info for actors if the IP exists in the CheckUser or AbuseFilter tables, or has contributions.

Cross-linking a similar task: T332163: Ensure that IPInfo instrumentation is enabled on Special:DeletedContributions

Nov 18 2024, 7:22 PM · Temporary accounts (Major pilot wiki deployment), Trust and Safety Product Sprint (Sprint Chimes (Dec. 9 - Jan. 17)), Trust and Safety Product Team, IP Info
Urbanecm added a comment to T380221: Allow authorised users to see IP Info for actors if the IP exists in the CheckUser or AbuseFilter tables, or has contributions.

Personally, I'd be open to removing the restriction for good, and allowing people to query IP Info for any IP (Temporary account), regardless of whether it actually edited. This might seem unnecessary, but IPs often make an action that is rejected prior to saving (by an AbuseFilter, spam filter or the like). When looking at those events, IP Info data can be useful, but cannot be generated natively. This is even more visible in the Temporary accounts world – there is always some reason for a Temporary account creation, and that reason always is "the user attempted to make a write action". Sometimes, that attempt is not successful, but that can be a valid reason to want to see IP Info data. Given this and the other is very similar to each other, I'm not filling a separate task for "allow data to be queried for any actor", but I do see a lot of usecases where that would be helpful.

Nov 18 2024, 7:22 PM · Temporary accounts (Major pilot wiki deployment), Trust and Safety Product Sprint (Sprint Chimes (Dec. 9 - Jan. 17)), Trust and Safety Product Team, IP Info
Urbanecm updated subscribers of T380221: Allow authorised users to see IP Info for actors if the IP exists in the CheckUser or AbuseFilter tables, or has contributions.

Hi @Tchanders, I filled this task following feedback given in the checkuser mailing list. Fortunately, I do not see anything in the relevant policy that says IP Info can be only used on users with live edits. Is this something we can consider in the Temporary accounts line of work?

Nov 18 2024, 7:20 PM · Temporary accounts (Major pilot wiki deployment), Trust and Safety Product Sprint (Sprint Chimes (Dec. 9 - Jan. 17)), Trust and Safety Product Team, IP Info
Urbanecm updated the task description for T380221: Allow authorised users to see IP Info for actors if the IP exists in the CheckUser or AbuseFilter tables, or has contributions.
Nov 18 2024, 7:17 PM · Temporary accounts (Major pilot wiki deployment), Trust and Safety Product Sprint (Sprint Chimes (Dec. 9 - Jan. 17)), Trust and Safety Product Team, IP Info
Urbanecm created T380221: Allow authorised users to see IP Info for actors if the IP exists in the CheckUser or AbuseFilter tables, or has contributions.
Nov 18 2024, 7:13 PM · Temporary accounts (Major pilot wiki deployment), Trust and Safety Product Sprint (Sprint Chimes (Dec. 9 - Jan. 17)), Trust and Safety Product Team, IP Info

Nov 14 2024

Robins7 awarded T354004: Grant `patrolmarks` to autopatrolled at Czech Wikipedia a Like token.
Nov 14 2024, 7:05 PM · User-Urbanecm, Wikimedia-Site-requests
Urbanecm removed a project from T342763: Add testing for Special:UserRights's interwiki mode: Quibble.
Nov 14 2024, 3:44 PM · MW-1.41-notes (1.41.0-wmf.27; 2023-09-19), MediaWiki-Core-Tests, MediaWiki-User-management
Urbanecm added a subtask for T379925: Add support for multi-DB testing to MediaWiki: T379928: Cover GlobalContributions by integration tests.
Nov 14 2024, 3:28 PM · Quibble, Continuous-Integration-Infrastructure
Urbanecm added a parent task for T379928: Cover GlobalContributions by integration tests: T379925: Add support for multi-DB testing to MediaWiki.
Nov 14 2024, 3:28 PM · CheckUser-GlobalContributions
Urbanecm created T379928: Cover GlobalContributions by integration tests.
Nov 14 2024, 3:28 PM · CheckUser-GlobalContributions
Urbanecm added a parent task for T342763: Add testing for Special:UserRights's interwiki mode: T379925: Add support for multi-DB testing to MediaWiki.
Nov 14 2024, 3:25 PM · MW-1.41-notes (1.41.0-wmf.27; 2023-09-19), MediaWiki-Core-Tests, MediaWiki-User-management
Urbanecm added a subtask for T379925: Add support for multi-DB testing to MediaWiki: T342763: Add testing for Special:UserRights's interwiki mode.
Nov 14 2024, 3:25 PM · Quibble, Continuous-Integration-Infrastructure
Urbanecm created T379925: Add support for multi-DB testing to MediaWiki.
Nov 14 2024, 3:24 PM · Quibble, Continuous-Integration-Infrastructure
Urbanecm assigned T379903: webservice restart suddenly stopped working to dcaro.

...edit conflicts, sorry about that.

Nov 14 2024, 11:20 AM · Toolforge (Toolforge iteration 16), cloud-services-team
Urbanecm placed T379903: webservice restart suddenly stopped working up for grabs.
Nov 14 2024, 11:18 AM · Toolforge (Toolforge iteration 16), cloud-services-team
Urbanecm created T379903: webservice restart suddenly stopped working.
Nov 14 2024, 11:14 AM · Toolforge (Toolforge iteration 16), cloud-services-team

Nov 13 2024

Urbanecm closed T379613: Revert celebration logo for cswiki as Resolved.

Thanks!

Nov 13 2024, 12:31 PM · Wikimedia-Site-requests

Nov 12 2024

Urbanecm created T379613: Revert celebration logo for cswiki.
Nov 12 2024, 11:30 AM · Wikimedia-Site-requests
Urbanecm created T379597: Add account status summary to Bitu.
Nov 12 2024, 9:03 AM · Infrastructure-Foundations, Bitu
Urbanecm added a comment to T378693: Unblocking an account in Bitu causes a internal server error.

Thanks @SLyngshede-WMF. For the record, the urbanecmtest account looks to be disabled in practice, rather than just according to ldap.toolforge.org. For example,pwdPolicySubentry is currently checked by Wikimedia Cloud on SSH attempts, which means I'm currently not able to SSH in as urbanecmtest. This seems to be done via ssh-key-ldap-lookup.py.

Nov 12 2024, 8:29 AM · Infrastructure-Foundations, Bitu

Nov 11 2024

Urbanecm added a comment to T378693: Unblocking an account in Bitu causes a internal server error.

Thanks @SLyngshede-WMF. I tested again. The account in Phabricator seems unblocked, but https://ldap.toolforge.org/user/urbanecmtest continues to say "account disabled". Is it possible there are some issues that prevent the action from propagating down to LDAP?

Nov 11 2024, 11:55 PM · Infrastructure-Foundations, Bitu
Urbanecm added a comment to T379493: Show IP button shows for block entries on Special:RecentChanges where a Temporary account is referenced.

Thanks @Dreamy_Jazz! Indeed, it does seem to be reproducible only at RecentChanges. I apparently got confused when testing by the buttons disappeared after the reveal, and misattributed the observations. Thanks for catching that!

Nov 11 2024, 1:56 PM · Temporary accounts (Create/update essential tools/anti-abuse management), CheckUser, Trust and Safety Product Sprint (Sprint Accordion October 28 - November 15), Trust and Safety Product Team
Urbanecm added a project to T378551: Create a way to unprotect an abuse filter: Temporary accounts.
Nov 11 2024, 10:36 AM · Trust and Safety Product Sprint (Sprint Gong (November 18 - December 6)), MW-1.44-notes (1.44.0-wmf.4; 2024-11-19), Temporary accounts (Create/update essential tools/anti-abuse management), Trust and Safety Product Team, AbuseFilter
Urbanecm added a comment to T377765: Do not allow protecting abuse filters if PII variables are not used.

Meantime, would it be possible for a sysadmin to reverse the protection of 1165 on enwiki?

Nov 11 2024, 9:47 AM · Patch-For-Review, Trust and Safety Product Sprint (Sprint Gong (November 18 - December 6)), MW-1.44-notes (1.44.0-wmf.4; 2024-11-19), Trust and Safety Product Team, AbuseFilter

Nov 10 2024

Urbanecm added a comment to T377765: Do not allow protecting abuse filters if PII variables are not used.

I would go further still, and use only the warning and not the checkbox. Since the checkbox seems to show up on every abuse filter edit even ones that have nothing to do with protected variables having it on every save is scary.

Nov 10 2024, 8:32 PM · Patch-For-Review, Trust and Safety Product Sprint (Sprint Gong (November 18 - December 6)), MW-1.44-notes (1.44.0-wmf.4; 2024-11-19), Trust and Safety Product Team, AbuseFilter