[kde-community] What is identity.kde.org and what is it not, aka how can it help
Hey all, as requested i'd like to wrap up what identity.kde.org is all about, as i am sure a lot of people do not understand it yet fully. identity.kde.org is our central account management. It is based on LDAP and acts as a Single Sign On Service. With a registration there you are enabled to create accounts on several of our websites. This includes the forums and the wikis. But not only that, it also enables you to apply for a developer account. The information you need to provide at this point in time is a valid email address (as you need to confirm your request) and a real name. Based on that realname you are provided with some options for a loginname you can choose. One might argue "why realname", and it was discussed elsewhere already and probably will change to only email address. Just keep in mind for now that it enables a lot of our management services, especially for our developer community. But it is important to know that it is *only* for management purposes. Once you jump over to e.g. the wikis and try to login with your identity credentials you are offered the choice of another username. And this time your choice is considered your displayname. So the loginname from identity indeed only acts as a loginname, nothing publicly visible. And again, might change in the near future. As for spam issues, this might only slightly decrease, because spam systems quickly adapt to new login ways. But it helps a bit at least. Additionally, technically we have support for identity logins on the wikis, but sadly we still need to supply openid and plain login support, due to historical reasons. identity is new, wikis are old... Unless we find a way to merge all sorts of accounts this will not change. Unlike the forums, where new accounts are now entirely based on identity subscriptions. But from a user perspective you benefit from one single set of login credentials you need to remember and use in several places. And more of them to come once we finish their integration. So much about identity. Consider this just an informal post. Cheerio, -- Ingo Malchow (neverendingo) New to KDE Software? - get help from http://userbase.kde.org or ask questions on http://forum.kde.org signature.asc Description: This is a digitally signed message part. ___ kde-community mailing list kde-community@kde.org https://mail.kde.org/mailman/listinfo/kde-community
Re: [kde-community] Spam attack on wikis - comments needed!
-BEGIN PGP SIGNED MESSAGE- Hash: SHA1 On 24/07/13 13:04, Luigi Toscano wrote: > On Wednesday 24 of July 2013 12:42:53 Anne Wilson wrote: >> One proposal is that we should require contributors to supply a >> valid email address when registering. We acknowledge that some >> people don't like to register email addresses where they may be >> found by others, but that is not an issue on the wikis. >> >> If you register your email address on any of our wikis >> >> * It is not visible to other users * Other contributors can >> (though rarely do) contact you, but only through the wiki. They >> do not see your address unless you choose to reply by email. >> >> Now the questions: >> >> What would be your concerns if we implemented this? >> >> Would this stop you from registering as a contributor? >> >> Please add any other relevant comments. > > I'm an old time contributor (hi list! I'm mostly an Italian > translator), and I think that: - an email is the really minimum > amount of information required, also as point of contact and for > accountability. When we translate PO files, we always put an email > address. I was surprised (I discovered it during Akademy) that it > was not required for wikis. > > - why don't require identity registration? I understand that the > idea is to lower the threshold for new contributors, but identity > is used also for other services (and it will be used more and > more), and on the other side the registration shows a bit of > interest in the community. > > PS. The email was sent also to kde-devel. Should I reply also > there? Following a split discussion could be a bit complicated. > Don't worry about that. When I've gathered comments I'll summarise to each of the three places I posted the message (just trying to make sure I catch everyone who needs to know about it). Anne -BEGIN PGP SIGNATURE- Version: GnuPG v1.4.13 (GNU/Linux) Comment: Using GnuPG with Thunderbird - http://www.enigmail.net/ iEYEARECAAYFAlHv7ZAACgkQj93fyh4cnBc8HwCbBNZqNGLwzHeFzhnxRKC8ZU0E AzoAnjyS2kBi4nnz6KDUIoNQyusbB90n =G/au -END PGP SIGNATURE- ___ kde-community mailing list kde-community@kde.org https://mail.kde.org/mailman/listinfo/kde-community
Re: [kde-community] Spam attack on wikis - comments needed!
On 24.07.2013 14:04, Luigi Toscano wrote: - why don't require identity registration? I understand that the idea is to lower the threshold for new contributors, but identity is used also for other services (and it will be used more and more), and on the other side the registration shows a bit of interest in the community. +1 I'd like to see identity being used for every single place a login is required for some KDE service in the future. I am happy any time I can use identity, and sad every time I can't. If someone uses more than one of those services, it's definitely worth the effort to create an identity account, and using only identity would considerable reduce account administration effort for both contributors and admins. And identity should be spamer-free, shouldn't it? Cheers, Thomas ___ kde-community mailing list kde-community@kde.org https://mail.kde.org/mailman/listinfo/kde-community
Re: [kde-community] Spam attack on wikis - comments needed!
Requiring an email is a very minimal request, at least in my opinion. Although I dislike reCAPTCHAs, if it's going only going to be a one time thing and keeps spam off the wikis, I'm all for it. A good simple question is "What is 'maps' spelled backwards?", then you select from three different words in a drop-down menu i.e., cans, barks, or spam. The obvious one of course being "spam". ___ kde-community mailing list kde-community@kde.org https://mail.kde.org/mailman/listinfo/kde-community
Re: [kde-community] Spam attack on wikis - comments needed!
Hi all, On Wed, Jul 24, 2013 at 2:04 PM, Luigi Toscano wrote: > On Wednesday 24 of July 2013 12:42:53 Anne Wilson wrote: ... >> Now the questions: >> >> What would be your concerns if we implemented this? >> >> Would this stop you from registering as a contributor? >> >> Please add any other relevant comments. > > I'm an old time contributor (hi list! I'm mostly an Italian translator), and I > think that: > - an email is the really minimum amount of information required, also as point > of contact and for accountability. When we translate PO files, we always put > an email address. I was surprised (I discovered it during Akademy) that it was > not required for wikis. > > - why don't require identity registration? I understand that the idea is to > lower the threshold for new contributors, but identity is used also for other > services (and it will be used more and more), and on the other side the > registration shows a bit of interest in the community. I am with Luigi here, requesting a valid email once for wiki contributors is not too high a threshold, and it would show they are really interested in contributing. There is another argument in favor: we simply don't have the manpower to clean out hundreds of spam comments and blocking spammers on a daily basis, we would very much prefer to invest our time in actually contributing to the wikis. Having to handle spam just because some hypothetical contributors doesn't want to disclose an email to a KDE server because they fear to get spammed? That's a bit a snake biting its tail, and we active contributors pay the bill for some hypothetical contributors, who can very easily configure their mail application spam filter. Cleaning out spam on the wiki is a hundred times more work, and I have yet to see those hypothetical contributors actively helping with that. I volunteer to help them configure their spam filters if needed :) I remember the amount of work we had on the old Amarok wiki, we didn't attract many contributors by keeping the doors wide open, but we sure did get spammed a thousandfold, wasting our precious time... Regards, Myriam -- Proud member of the Amarok and KDE Community Protect your freedom and join the Fellowship of FSFE: http://www.fsfe.org Please don't send me proprietary file formats, use ISO standard ODF instead (ISO/IEC 26300) ___ kde-community mailing list kde-community@kde.org https://mail.kde.org/mailman/listinfo/kde-community
Re: [kde-community] Spam attack on wikis - comments needed!
On Wednesday 24 of July 2013 12:42:53 Anne Wilson wrote: > One proposal is that we should require contributors to supply a valid > email address when registering. We acknowledge that some people don't > like to register email addresses where they may be found by others, > but that is not an issue on the wikis. > > If you register your email address on any of our wikis > > * It is not visible to other users > * Other contributors can (though rarely do) contact you, but only > through the wiki. They do not see your address unless you choose to > reply by email. > > Now the questions: > > What would be your concerns if we implemented this? > > Would this stop you from registering as a contributor? > > Please add any other relevant comments. I'm an old time contributor (hi list! I'm mostly an Italian translator), and I think that: - an email is the really minimum amount of information required, also as point of contact and for accountability. When we translate PO files, we always put an email address. I was surprised (I discovered it during Akademy) that it was not required for wikis. - why don't require identity registration? I understand that the idea is to lower the threshold for new contributors, but identity is used also for other services (and it will be used more and more), and on the other side the registration shows a bit of interest in the community. PS. The email was sent also to kde-devel. Should I reply also there? Following a split discussion could be a bit complicated. Ciao -- Luigi ___ kde-community mailing list kde-community@kde.org https://mail.kde.org/mailman/listinfo/kde-community
Re: [kde-community] Spam attack on wikis - comments needed!
-BEGIN PGP SIGNED MESSAGE- Hash: SHA1 On 24/07/13 09:49, Anne Wilson wrote: > We are experiencing a severe spam attack on the wikis. As a temporary > measure all new registration has been blocked, while we work out the > best way of dealing with this. > > Sorry for the inconvenience. Over the 12 hours before the block came into effect we had ~100 new accounts created for the sole purpose of spamming. For every one an administrator has to find the account, find any and all linked pages, delete them with explanation for the logs, and block the user from posting more. This takes considerable time, as well as risking our pages getting into blacklists. One proposal is that we should require contributors to supply a valid email address when registering. We acknowledge that some people don't like to register email addresses where they may be found by others, but that is not an issue on the wikis. If you register your email address on any of our wikis * It is not visible to other users * Other contributors can (though rarely do) contact you, but only through the wiki. They do not see your address unless you choose to reply by email. Now the questions: What would be your concerns if we implemented this? Would this stop you from registering as a contributor? Please add any other relevant comments. Questy captcha is very good, but the more questions you can use randomly, the more efficient it is. Every question must have a single obvious answer, since it is aimed at stopping machine registration, not human ones. If you can suggest such a question, please send it to me off-list. Thanks for reading, and thanks in advance for any help you can give us. Anne -BEGIN PGP SIGNATURE- Version: GnuPG v1.4.13 (GNU/Linux) Comment: Using GnuPG with Thunderbird - http://www.enigmail.net/ iEYEARECAAYFAlHvvbYACgkQj93fyh4cnBd0FACfcrpSH18WzoISZugTnoPJHVB/ zr4AnjGVjOPUkPEmqMwld0QsTSaroAEv =Nz4x -END PGP SIGNATURE- ___ kde-community mailing list kde-community@kde.org https://mail.kde.org/mailman/listinfo/kde-community
[kde-community] Spam attack on wikis
-BEGIN PGP SIGNED MESSAGE- Hash: SHA1 We are experiencing a severe spam attack on the wikis. As a temporary measure all new registration has been blocked, while we work out the best way of dealing with this. Sorry for the inconvenience. Anne -BEGIN PGP SIGNATURE- Version: GnuPG v1.4.13 (GNU/Linux) Comment: Using GnuPG with Thunderbird - http://www.enigmail.net/ iEYEARECAAYFAlHvlSgACgkQj93fyh4cnBcM9wCfQaEA/z17dO79wDaGs1PSoBE8 skUAni8bWSgCFfh3Ee0WeDE6kf/L4lQ8 =gARV -END PGP SIGNATURE- ___ kde-community mailing list kde-community@kde.org https://mail.kde.org/mailman/listinfo/kde-community