Last modified: 2010-05-15 14:35:52 UTC

Wikimedia Bugzilla is closed!

Wikimedia migrated from Bugzilla to Phabricator. Bug reports are handled in Wikimedia Phabricator.
This static website is read-only and for historical purposes. It is not possible to log in and except for displaying bug reports and their history, links might be broken. See T4414, the corresponding Phabricator task for complete and up-to-date bug report information.
First Last Prev Next    This bug is not in your last search results.
Bug 2414 - Disable unprotect tab for MediaWiki namspace
Disable unprotect tab for MediaWiki namspace
Status: RESOLVED FIXED
Product: MediaWiki
Classification: Unclassified
Interface (Other open bugs)
unspecified
All All
: Low minor with 2 votes (vote)
: ---
Assigned To: Nobody - You can work on this!
http://test.leuksman.com/index.php?ti...
:
Depends on:
Blocks: 625 4085
  Show dependency treegraph
 
Reported: 2005-06-14 20:38 UTC by Guttorm Flatabø
Modified: 2010-05-15 14:35 UTC (History)
0 users

See Also:
Web browser: ---
Mobile Platform: ---
Assignee Huggle Beta Tester: ---

Attachments
Add an attachment (proposed patch, testcase, etc.)

Description Guttorm Flatabø 2005-06-14 20:38:08 UTC 
The MediaWiki namespace appear protected to anonymous users and normal users,
and this is correct since the pages are protected.

However for sysops the pages appear unprotected, and it one can "protect" them
over again (and then "unprotect").

This has no real practical implications, it only causes some confusion as to the
protected status of the pages.
Comment 1 lɛʁi לערי ריינהארט 2005-06-15 02:42:48 UTC 
changed summary for better understanding

&action=unprotect and &action=protect should be deactivated as well. An adequate
message could be generted.

In the "protection log" 

Regards Reinhardt [[user:gangleri]]
Comment 2 Ævar Arnfjörð Bjarmason 2005-06-16 17:32:44 UTC 
How about just making protection work the same for the MediaWiki: namespace except that
pages are protected by default? If admins of the wiki want anyone to edit their interface messages
I don't see why we should stop them, it's only ours to provide sane defaults.
Comment 3 Guttorm Flatabø 2005-06-17 07:42:08 UTC 
(In reply to comment #2)
> How about just making protection work the same for the MediaWiki: namespace
except that
> pages are protected by default? If admins of the wiki want anyone to edit
their interface messages
> I don't see why we should stop them, it's only ours to provide sane defaults.

Indeed. I'd much prefer that solution. It would also solve bug # 1606.
Comment 4 Brion Vibber 2005-06-17 07:47:16 UTC 
Several issues:
1) Well-meaning sysops may unprotect HTML messages without realizing it's a security risk.
2) Depending on installation and update method (and language selection), MediaWiki: 
message pages may not exist to begin with -- including HTML messages used by the main wiki 
code or by an extension. This opens a security risk if it's possible for an unprivileged 
user to create such pages.
3) If this isn't already done, page moves must be taken into account as well as editing; 
the wiki can be broken in fun ways if key messages are renamed.
Comment 5 Zigger 2005-12-12 06:07:53 UTC 
Ævar removed the tab for the MediaWiki namespace in SkinTemplate.php CVS v1.102
a few days ago.
Note You need to log in before you can comment on or make changes to this bug.
First Last Prev Next    This bug is not in your last search results.

Navigation
Links