https://bugzilla.wikimedia.org/show_bug.cgi?id=29135
--- Comment #17 from T. Gries <[email protected]> 2011-06-10 19:39:47 UTC --- > for wikis to require an email address for password resets, which 'closes' the > vulnerability if wikis are concerned about it. 'Fixing' this for the sake of > fixing it is definitely a WONTFIX, IMO. Adding hooks to allow extensions to > modify the behaviour, on the other hand, is entirely reasonable. Can you do me a favor, and write such a module for me? Requirements: the requested module - when "hooked" - should do this: if user X goes to Special:PasswordReset: - they should sees the own name X, - prefilled in the input field, and - "read-only", and the script allows only X as return value. Any other value Y should throw an error. -- Configure bugmail: https://bugzilla.wikimedia.org/userprefs.cgi?tab=email ------- You are receiving this mail because: ------- You are the assignee for the bug. You are on the CC list for the bug. _______________________________________________ Wikibugs-l mailing list [email protected] https://lists.wikimedia.org/mailman/listinfo/wikibugs-l
