enhance checkgroups handling
davidsen at tmr.com
Tue Aug 14 20:24:34 UTC 2007
Russ Allbery wrote:
>> ## AR (Argentina)
>> checkgroups:jorge_f at nodens.fisica.unlp.edu.ar:ar.*:doit
>> newgroup:jorge_f at nodens.fisica.unlp.edu.ar:ar.*:doit
>> rmgroup:jorge_f at nodens.fisica.unlp.edu.ar:ar.*:doit
>> Everyone can make a mess with checkgroups (2000 ar.* newsgroups created
>> in the row with a forged checkgroups... and then another checkgroups
>> which deletes them and afterwards another which...).
>> But well, this can currently also be done with newgroup/rmgroup articles
>> (but the mess is softer).
> Maybe we should put some sort of limit on how many changes can be made
> with one checkgroups without the administrator manually running
> docheckgroups with some flag? Sort of like what actsync does.
There are two good ways to do this, one being to have a limit for
changes in PGP signed groups and another for open groups, or the other
more flexible/complex way is to have a per-hierarchy limit so problem
hierarchies can be reined in. Note that these methods are NOT mutually
exclusive, and you could combine a global default with exceptions.
I could tell horror stories about one hierarchy, run by someone who
alternately wrote letters to management claiming discrimination due to
the nature of his hierarchy, and telling us he was a "poor old man" who
couldn't understand how to do anything tight, or why we didn't want 143
groups in a hierarchy with 3-5 posts a day. Don't get me started...
> Also, make sure that the checkgroups handling in INN actually obeys the
> pattern in control.ctl. It used to have problems in that area, but I
> haven't looked at it again since your recent modifications.
>> Wouldn't it be time to only allow PGP-signed control articles to be
>> honoured? (inviting current hierarchies maintainers to sign their
>> control articles) Active hierarchies are mostly PGP-managed, though.
>> [perhaps we should discuss that in news.admin.hierarchies]
> True. Maybe it's time to take that step.
You better have some good documentation for moderators on that, because
there are a number of them using ill-suited Windows software who don't
know PGP from pig latin.
bill davidsen <davidsen at tmr.com>
CTO TMR Associates, Inc
Doing interesting things with small computers since 1979
More information about the inn-workers