Last modified: 2011-03-13 18:06:34 UTC

Wikimedia Bugzilla is closed!

Wikimedia migrated from Bugzilla to Phabricator. Bug reports are handled in Wikimedia Phabricator.
This static website is read-only and for historical purposes. It is not possible to log in and except for displaying bug reports and their history, links might be broken. See T12038, the corresponding Phabricator task for complete and up-to-date bug report information.
Bug 10038 - Allow a user to prevent logins except from approved IPs
Allow a user to prevent logins except from approved IPs
Product: MediaWiki
Classification: Unclassified
User preferences (Other open bugs)
All All
: Lowest enhancement (vote)
: ---
Assigned To: Nobody - You can work on this!
Depends on:
  Show dependency treegraph
Reported: 2007-05-27 04:39 UTC by (none)
Modified: 2011-03-13 18:06 UTC (History)
1 user (show)

See Also:
Web browser: ---
Mobile Platform: ---
Assignee Huggle Beta Tester: ---


Description (none) 2007-05-27 04:39:29 UTC
Given the high number of compromised accounts at en.wikipedia, I think that the following is a good partial solution:
On the preferences, allow a user to have the account locked to all IPs but the ones on a list which the user can edit. Automatically have any recent IPs used by the user be on the list, to make it easier for a user who doesn't know all of his/her IPs. Allow the use of ranges.
Comment 1 Aryeh Gregor (not reading bugmail, please e-mail directly) 2007-05-27 06:20:31 UTC
Seems to be basically the same as bug 9837, except looked at from a different angle (list maintained by user instead of general sysops; whitelist instead of blacklist).  This way is probably not as good an idea, given that people might lose control of their IP addresses and be unable to log in again without sysadmin intervention.
Comment 2 Chad H. 2009-05-01 14:28:07 UTC
Marking WONTFIX per bug 9837 and especially per comment #1.

Note You need to log in before you can comment on or make changes to this bug.