Just got fail to authenticate to m.en including getting it to send me a temp
password in case I forgot it. It it me or a site problem?
-george william herbert
george.herb...@gmail.com
Sent from Kangphone
___
Wikitech-l mailing list
Wikitech-l
have complained, it is a bug, regardless of what reasonable developer
expectations were.
Yes, it sucks. But, this is what having real users (versus idealized ones)
brings...
-george william herbert
george.herb...@gmail.com
Sent from Kangphone
On Mar 10, 2014, at 11:05 AM, Tyler Romeo wrote:
>
le a lot...).
-george william herbert
george.herb...@gmail.com
Sent from Kangphone
___
Wikitech-l mailing list
Wikitech-l@lists.wikimedia.org
https://lists.wikimedia.org/mailman/listinfo/wikitech-l
This is the RFP, not contract.
It's industry typical for information needed to decide if followup and then
site visit are called for, for particular potential vendors.
-george william herbert
george.herb...@gmail.com
Sent from Kangphone
On Oct 21, 2013, at 7:56 AM, Jay Ashworth
is luck, not
extra robustness). Every time I site survey a "tier 4" I can find
vulnerabilities.
-george william herbert
george.herb...@gmail.com
Sent from Kangphone
___
Wikitech-l mailing list
Wikitech-l@lists.wikimedia.org
https://lists.wikimed
On Sep 10, 2013, at 12:49 AM, Amir Ladsgroup wrote:
> and problem of internet
> access becomes even worse when the government makes speed of internet on
> SSL so low that time of opening a simple page becomes like 4 times higher
> when people try to use SSL,
We are not proposing to shut of h
If it was six months ago, I would suggest we hand over a unique random cookie
with the redirect and verify on the HTTPS side that the cookie showed up, to
make sure that it worked.
And then only keep a success/fail log for IP block, perhaps, no user data.
That would seem privacy neutral.
Too
On Aug 20, 2013, at 9:43 PM, Greg Grossmeier wrote:
> Additionally, to see if any changes have a major effect on the ability
> of people to log in, we've started parsing out the successful
> centralauth autentications and will have a nice Ganglia graph tomorrow.
> We also parsed out some hist
+foundation-l
On Aug 20, 2013, at 1:20 PM, Brion Vibber wrote:
> This is an acceptable trade-off which we've allowed the Chinese government
> to make for us before, and here we're talking about a much smaller effect
> (on contributors only).
>
> Again, it's not our business to fix China. China
On Aug 20, 2013, at 12:57 PM, Brion Vibber wrote:
> IMO it's simply unacceptable to leak authentication tokens or account
> passwords in cleartext; allowing any form of login over HTTP is dinosaur
> behavior and we'd be crazy to let it continue, whether for "some sites"
> only or all. We should
On Aug 20, 2013, at 12:03 PM, James Alexander wrote:
> Yeah, this seems to contradict what I thought Ryan was saying above and
> what I was under the impression for. The bad use case for here (as describe
> by Risker for example) is a mainland china user from zhWiki logging in
> (through http)
11 matches
Mail list logo
