[cgiapp] CGI::Application wiki page SettingDropDownValues updated by BryanSmith
Ron Savage
ron at savage.net.au
Thu Oct 25 17:58:46 EDT 2012
Hi Mark
On 26/10/12 02:01, Mark Stosberg wrote:
> On 10/25/2012 10:51 AM, Brian Wightman wrote:
>> Are we able to block this username (I know it won't be very effective) from
>> doing any type of updates? Perhaps just bit-bucketing them or blacklisting
>> the IP for a period of time?
>
> I believe we have, or can have, root access on the server where the site
> is hosted. So we have some options to block IPs at the OS or Apache level.
AFAIK, some ISPs, including Amazon, share IPs among many users, so
blocking an IP is contentious.
> The application could be patched to ban this username as well.
Could be done, but then he'd switch.
I suggesting disabling edits unless the user name is on a list. Then
there's the chance the abuser would see legit edits and impersonate that
user...
> If anyone is interested to work on it, I would be grateful, and see
> what can done about arranging appropriate access.
>
> Mark
>
> ##### CGI::Application community mailing list ################
> ## ##
> ## To unsubscribe, or change your message delivery options, ##
> ## visit: http://lists.openlib.org/mailman/listinfo/cgiapp ##
> ## ##
> ## Web archive: http://lists.openlib.org/pipermail/cgiapp/ ##
> ## Wiki: http://cgiapp.erlbaum.net/ ##
> ## ##
> ################################################################
>
>
>
--
Ron Savage
http://savage.net.au/
Ph: 0421 920 622
More information about the cgiapp
mailing list