View Issue Details
| ID | Project | Category | View Status | Date Submitted | Last Update |
|---|---|---|---|---|---|
| 0000132 | WackoWiki | security | public | 2007-11-23 07:12 | 2009-08-19 09:38 |
| Reporter | administrator | Assigned To | Tann San | ||
| Priority | high | Severity | major | Reproducibility | N/A |
| Status | resolved | Resolution | fixed | ||
| Product Version | 4.2 | ||||
| Target Version | 4.3.rc | Fixed in Version | 4.3.rc | ||
| Summary | 0000132: Installer should check if base pages have appropriate ACL's else update values | ||||
| Description | affects all previous releases Installer should check ACL values - base pages ACL edit -> Admins - base pages ACL comments -> $ we could made this an option to chose | ||||
| Tags | SPAM | ||||
|
|
already fixed by vendeeglobe |
|
|
it's not fixed, this issue should fix all previous installation, already running, see these pages mostly still have their former acl setting |
|
|
you can't decide that, it's up to each admin to decide for themselves. some wikis would want to have an "anyone can write" policy. |
|
|
"yes and no", but you see my intention, it's an real problem for normal users to see or even understand this, and I see this too often - vulnerable and spammed base pages while the "wiki" itself is protected |
|
|
well really it's not our duty to protect everyones sites. Once the wiki main site is polished up a bit we can have a FAQ section and one of the FAQs can be "What can I do to stop my home page being spammed?" and then in there we talk them through securing their site via ACLs. It's better to educate people to the correct usage of the wiki instead of forcing every wiki upgrader to have their permissions reset. |
| Date Modified | Username | Field | Change |
|---|---|---|---|
| 2007-11-23 07:12 | administrator | New Issue | |
| 2007-11-23 07:12 | administrator | Legacy | => NEW |
| 2007-11-23 07:17 | administrator | Relationship added | related to 0000098 |
| 2007-11-23 07:31 | administrator | Tag Attached: SPAM | |
| 2007-11-28 20:42 | Tann San | Status | new => assigned |
| 2007-11-28 20:42 | Tann San | Assigned To | => Tann San |
| 2007-11-28 20:50 | Tann San | Status | assigned => resolved |
| 2007-11-28 20:50 | Tann San | Fixed in Version | => 5.0.0 |
| 2007-11-28 20:50 | Tann San | Resolution | open => fixed |
| 2007-11-28 20:50 | Tann San | Note Added: 0000202 | |
| 2007-11-29 10:38 | administrator | Note Added: 0000211 | |
| 2007-11-29 10:39 | administrator | Status | resolved => feedback |
| 2007-11-29 10:39 | administrator | Resolution | fixed => reopened |
| 2007-11-29 11:07 | Tann San | Note Added: 0000212 | |
| 2007-11-29 15:05 | administrator | Note Added: 0000214 | |
| 2007-11-29 16:10 | Tann San | Note Added: 0000215 | |
| 2007-11-30 10:53 | administrator | Description Updated | |
| 2007-12-12 19:04 | Tann San | Status | feedback => resolved |
| 2007-12-12 19:04 | Tann San | Resolution | reopened => fixed |
| 2009-08-19 09:22 | administrator | Fixed in Version | 5.0.0 => 4.3.rc |
| 2009-08-19 09:38 | administrator | Target Version | 5.0.0 => 4.3.rc |
| 2010-03-08 10:22 | administrator | Category | Security => security |
