On Wed, Apr 26, 2023 at 6:26 PM Ryan Lerch <rle...@redhat.com> wrote: > > > > On Wed, 26 Apr 2023 at 07:17, Kevin Fenzi <ke...@scrye.com> wrote: >> >> Hey folks. >> >> So, a few weeks back I noticed some spam projects on pagure.io. >> So, I cleaned up about 165 of them and deactivated 165 spam users. >> >> Now, I see there's another pile of them. :( >> >> So, I started to look at cleaning things up again, but I think we need a >> better solution that doesn't involve admins manually cleaning things up. >> ;( Additionally, the clean up is not really very scripted and takes a >> long time to do. >> >> So, thoughts on a longer term solution? I can think of a few: >> >> 1. only allow fedora 'contributors' to make new projects. (ie, people in >> at least one non cla/non base ipa group >> Pros: >> - Would very likely cut off the spam or at least cut it way down. >> - Might be easy to implement? (not sure tho!) >> Cons: >> - Would block legit people who aren't fedora contributors. > > > This is my top pick! > > Had a quick look at the pagure code, and this looks like we will have to add > some additional logic for this to work (not necessarily difficult, but it’s > not just a config change) > > Afaict, there is no logic to restrict creating new repos (other than turning > it off completely). Additionally. The logic that restricts FPCA is done at > the login phase. So unless we want to restrict login to FPCA+1 (which I’m not > suggesting) it will take a bigger (but not that bad) of a fix to get working.
I'm happy to review contributions for this. The CI finally works again, so if the tests fail in a PR, at least it's actionable. :) -- 真実はいつも一つ!/ Always, there's only one truth! _______________________________________________ infrastructure mailing list -- infrastructure@lists.fedoraproject.org To unsubscribe send an email to infrastructure-le...@lists.fedoraproject.org Fedora Code of Conduct: https://docs.fedoraproject.org/en-US/project/code-of-conduct/ List Guidelines: https://fedoraproject.org/wiki/Mailing_list_guidelines List Archives: https://lists.fedoraproject.org/archives/list/infrastructure@lists.fedoraproject.org Do not reply to spam, report it: https://pagure.io/fedora-infrastructure/new_issue