https://bugzilla.wikimedia.org/show_bug.cgi?id=30636
--- Comment #26 from Happy-melon <[email protected]> 2011-09-25 10:43:19 UTC --- (In reply to comment #24) > Excellent, thanks! > > On second thought, I am actually happy enough with the lack of logging. > Forgetting your password and requesting a new one by email is not logged > either, and logging publicly exposes forgetfulness. The method employed now > prevents admins from learning user passwords: I think this is good practice > enough. > > I suggest to drop "// @todo: Logging". (In reply to comment #25) > Historically there was an on-wiki sysadmin/developer user group (which > continues on today in global groups). Simply because something can be done via > a maintenance script doesn't mean that it should be necessary. Especially > something as basic as password resetting, which nearly every other application > in the world simply allows admins to do without any kind of logging. What needs to be logged is not the fact that a password reset was done (which as Gregor says is not logged in general), but the fact that the admin user has made an action which alters *another person's* account. There is still nothing to stop abuse of this system to hijack accounts, the resetter can still log into the account with the temporary password before the owner does and change the password to their own. It's against eventualities like *that* that it would benefit from logging. > Anyway, most of this is tangential (or completely off-topic). Thanks for your > commit. :-) You're welcome :) -- Configure bugmail: https://bugzilla.wikimedia.org/userprefs.cgi?tab=email ------- You are receiving this mail because: ------- You are the assignee for the bug. You are on the CC list for the bug. _______________________________________________ Wikibugs-l mailing list [email protected] https://lists.wikimedia.org/mailman/listinfo/wikibugs-l
