Espozo wrote:
This is somewhat related to the whole anti-spam thing, that I found funny: [Google computer vision defeats Google's own CAPTCHA]
That's been possible for years. Even during the era when automatic confirmation based on e-mail or two talk edits wasn't possible, both
NESdev Wiki and
my own wiki got dozens of automatically generated FirstnameLastname sign-ups clogging the Recent Changes page because bots or sweatshops were passing ReCAPTCHA. Once I realized that was the problem, I instituted the ABUSE filter and the present Q&A system on my wiki. And what worked there has largely worked for NESdev Wiki as well.
koitsu wrote:
which is exactly why for decades I have advocated that manual human intervention be part of the approval process for account sign-ups (on anything).
As with all things security, it's a tradeoff between security and convenience. It depends on the site, but sometimes reverts every week or two are more convenient for administrators than having someone standing by in all time zones 7 days a week to approve applications for new accounts. And the accounts that go on to make trouble here are more the StalkerDragon types than those who sign up and post off-topic advertisements.
rainwarrior wrote:
tepples wrote:
...those edits have proven easy for anybody with rollback privileges to blow away.
How many users actually have "rollback privileges"
Administrators and
rollbackers. But
rollback is a shortcut for the
undo feature that anyone can do, just without the confirmation page or the ability to change the edit summary for the revert.
rainwarrior wrote:
and how are they acquired?
An administrator adds a user to the rollbackers group through the user rights interface. You can request the privilege by asking an administrator (such as myself) while mentioning your history of reverting vandalism on the wiki, such as through use of the undo feature.