Re: Wiki 2FA

-----BEGIN PGP SIGNED MESSAGE-----
Hash: RIPEMD160


> I dunno.  I was astonished that they came back a second time after we'd
> once thrown them off and cleaned up the mess; you'd think they'd realize
> that that would just happen again.  I think it may have been an
> intentional attack on the PG project as such, not just drive-by spamming.
> (If so, and if the goal was to complicate our lives, they succeeded.)

I doubt PG was targeted: MediaWiki was. It's a popular and easy spam vector 
these days, and reminds me of Windows in the old days: you can setup a 
brand new wiki and be guaranteed a spammer before you even start advertising 
your site. And once you are on a list, expect to never be able to fully open 
your wiki again.

The captcha war is absolutely being won by the spammers at the moment, so 
I think our current solution is probably the best tradeoff we can get. 
Although it would be nice to be able to point people the #postgresql 
channel for editor rights too.

- -- 
Greg Sabino Mullane greg@turnstep.com
PGP Key: 0x14964AC8 201601231931
http://biglumber.com/x/web?pk=2529DF6AB8F79407E94445B4BC9B906714964AC8
-----BEGIN PGP SIGNATURE-----

iEYEAREDAAYFAlakG38ACgkQvJuQZxSWSsj5fgCgz8TYBB7hU+ypTqd8Y69MAFUA
ygAAn3oU74gObKJ9eXqN5QcNNovocMME
=01Yz
-----END PGP SIGNATURE-----