On Wed, Jul 6, 2016 at 8:31 AM, Erik Bray <erik.m.b...@gmail.com> wrote:

> Alternatively, we can do a little better than "anonymous" be
> re-enabling registration on the Trac site.
>
> Trac has an "authenticated" role, for users who have passed
> authentication but nothing else.

That sounds OK.

>   For now we can at give merely
> authenticated users zero privileges (besides maybe voting) and upgrade
> them to more privileged users (can comment, etc.) if they are trusted.
> If it helps, I can at least add a captcha to the registration page so
> we don't get cluttered with (as many) spam users who otherwise can't
> do anything.
>
> Dima also mentioned adding OpenID authentication which is a
> possibility, but more effort.

Back when we had easy registration -- without a human manual
verification process -- we would nearly instantly get massive amounts
of horrible spam, and cleaning them up in trac used to be hard because
you couldn't edit/delete comments easily.  A captcha or OpenID would
not have prevented that at all.

I don't know if things are better now and there are less such
spammers.  At least now you can easily delete trac comments to clean
up after a spammer.

 -- William

-- 
You received this message because you are subscribed to the Google Groups 
"sage-devel" group.
To unsubscribe from this group and stop receiving emails from it, send an email 
to sage-devel+unsubscr...@googlegroups.com.
To post to this group, send email to sage-devel@googlegroups.com.
Visit this group at https://groups.google.com/group/sage-devel.
For more options, visit https://groups.google.com/d/optout.

Reply via email to