from the Wiki User Page:
--
User:Harry Wood
I'm a big contributor to OpenStreetmap (User name Harry Wood) and regular user of open source geo software
My website: http://harrywood.co.uk
-----------
blocked indefinitely for spam
--
Brian M Hamlin
OSGeo California Chapter
blog.light42.com
On Sat, Sep 03, 2016 at 08:58:22AM -0700, Brian M Hamlin wrote:
from the Wiki User Page:
--
User:Harry WoodI'm a big contributor to OpenStreetmap (User name Harry Wood) and regular user of open source geo software
My website: http://harrywood.co.uk
-----------blocked indefinitely for spam
Did you try sending him an email ? Maybe his account was compromised ?
--strk;
On Sat, Sep 03, 2016 at 06:13:28PM +0200, Sandro Santilli wrote:
On Sat, Sep 03, 2016 at 08:58:22AM -0700, Brian M Hamlin wrote:
> User:Harry Wood
> blocked indefinitely for spam
Did you try sending him an email ? Maybe his account was compromised ?
Looking at Wiki changes it actually seems to me that Harry has been
very active at _catching_ spam and marking it as such.
What am I missing ?
--strk;
Hi SAC -
a quick look shows a real Harry Wood, who is quite involved withOSM and OSM Wiki.. SO perhaps Sandro is right .. I dont know what to do.. the wiki is valuable to OSGeo.org.
In the past it was enough to check for spam and then put that fake user out..
This occurrance ranks as a new level of complexity in an attack..
Years ago, before Christian W. started, I was awarded a star of Spam Blocker for my wiki tending efforts. Now, I dont know how to react to this.. the spammers are certainly winning,
they are paid pennies for this ? and yet they foil diligent defense.
--Brian M Hamlin
On Sat, 3 Sep 2016 18:18:52 0200, Sandro Santilli <strk@kbt.io> wrote:
On Sat, Sep 03, 2016 at 06:13:28PM 0200, Sandro Santilli wrote:
On Sat, Sep 03, 2016 at 08:58:22AM -0700, Brian M Hamlin wrote:
> User:Harry Wood
> blocked indefinitely for spam
Did you try sending him an email ? Maybe his account was compromised ?
Looking at Wiki changes it actually seems to me that Harry has been
very active at _catching_ spam and marking it as such. What am I missing ?
--strk;
_______________________________________________
Sac mailing list
Sac@lists.osgeo.org
http://lists.osgeo.org/mailman/listinfo/sac
--
Brian M Hamlin
OSGeo California Chapter
blog.light42.com
On Sun, Sep 4, 2016 at 2:05 AM, Brian M Hamlin <maplabs@light42.com> wrote:
Hi SAC -
a quick look shows a real Harry Wood, who is quite involved withOSM and
OSM Wiki.. SO perhaps Sandro is right .. I dont know what to do.. the wiki
is valuable to OSGeo.org.
Looking at
https://wiki.osgeo.org/wiki/Special:Contributions/Harry_Wood
there is tons of spam which was recently created through this account.
So, perhaps compromised?
When unlocking, for sure the pw must be changed.
Quick question: why redirect to a "spam" page rather than deleting the
spam pages completely? With the redirect still the ugly page titles
remain which carry spam messages.
In the past it was enough to check for spam and then put that fake user
out..
This occurrance ranks as a new level of complexity in an attack..
I fully agree.
Years ago, before Christian W. started, I was awarded a star of Spam
Blocker for my wiki tending efforts. Now, I dont know how to react to this..
the spammers are certainly winning,
they are paid pennies for this ?
I suspect yes. Yet I don't understand why since the spam content is
rather useless, not even professional. Weird.
Best
Markus
and yet they foil diligent defense.
--Brian M Hamlin
Hello,
I unblocked Harry, because he is definitely not a spammer! In contrary,
he offered me a lot of really helpful information about how to fight
spam in a mediawiki, because he has knowledge from the OpenStreetMap and
the Open Knowledge Foundations wiki instances on this topic.
I recently blogged about the problem, after which Harry contacted me:
http://cwillmes.de/blog/2016/08/02/the-daily-kindergardening-of-osgeo-wiki-spammers/
Beside this, from next week (12th September) I will be mostly away from
internet until first week of October.
I would like to ask others from this list to also decide on incoming
account requests:
https://wiki.osgeo.org/wiki/Special:ConfirmAccounts
Currently we have about 3-5 requests a day to decide on. Additionaly, we
need to check the recent changes for span and block and mass delete
spammers and their contents (easy done via the block and mass delete
functionality).
If you want to help, and do not have the according permissions in the
wiki, say so, and I will grand you this rights.
Regards,
Christian
On 04.09.2016 09:36, Markus Neteler wrote:
On Sun, Sep 4, 2016 at 2:05 AM, Brian M Hamlin <maplabs@light42.com> wrote:
Hi SAC -
a quick look shows a real Harry Wood, who is quite involved withOSM and
OSM Wiki.. SO perhaps Sandro is right .. I dont know what to do.. the wiki
is valuable to OSGeo.org.Looking at
https://wiki.osgeo.org/wiki/Special:Contributions/Harry_Wood
there is tons of spam which was recently created through this account.
So, perhaps compromised?When unlocking, for sure the pw must be changed.
Quick question: why redirect to a "spam" page rather than deleting the
spam pages completely? With the redirect still the ugly page titles
remain which carry spam messages.In the past it was enough to check for spam and then put that fake user
out..
This occurrance ranks as a new level of complexity in an attack..I fully agree.
Years ago, before Christian W. started, I was awarded a star of Spam
Blocker for my wiki tending efforts. Now, I dont know how to react to this..
the spammers are certainly winning,
they are paid pennies for this ?I suspect yes. Yet I don't understand why since the spam content is
rather useless, not even professional. Weird.Best
Markusand yet they foil diligent defense.
--Brian M Hamlin_______________________________________________
Sac mailing list
Sac@lists.osgeo.org
http://lists.osgeo.org/mailman/listinfo/sac
On Sun, Sep 04, 2016 at 09:36:37AM +0200, Markus Neteler wrote:
On Sun, Sep 4, 2016 at 2:05 AM, Brian M Hamlin <maplabs@light42.com> wrote:
> Hi SAC -
>
> a quick look shows a real Harry Wood, who is quite involved withOSM and
> OSM Wiki.. SO perhaps Sandro is right .. I dont know what to do.. the wiki
> is valuable to OSGeo.org.Looking at
https://wiki.osgeo.org/wiki/Special:Contributions/Harry_Wood
there is tons of spam which was recently created through this account.
What I see in that page is tons of spam _removed_.
The negative number in red is lines removed, and all pages
were redirected to the Spam page, as recommended in the target page.
Can you see that now ? Or is my interpretation wrong ?
Check also the "diff" link, which confirms what I'm saying.
--strk;
On Sun, Sep 4, 2016 at 1:01 PM, Sandro Santilli <strk@kbt.io> wrote:
On Sun, Sep 04, 2016 at 09:36:37AM +0200, Markus Neteler wrote:
On Sun, Sep 4, 2016 at 2:05 AM, Brian M Hamlin <maplabs@light42.com> wrote:
> Hi SAC -
>
> a quick look shows a real Harry Wood, who is quite involved withOSM and
> OSM Wiki.. SO perhaps Sandro is right .. I dont know what to do.. the wiki
> is valuable to OSGeo.org.Looking at
https://wiki.osgeo.org/wiki/Special:Contributions/Harry_Wood
there is tons of spam which was recently created through this account.What I see in that page is tons of spam _removed_.
The negative number in red is lines removed, and all pages
were redirected to the Spam page, as recommended in the target page.Can you see that now ? Or is my interpretation wrong ?
Check also the "diff" link, which confirms what I'm saying.
Yes I see the same.
@Harry: please *delete* spam pages rather than creating obscure redirects.
BTW: I have deleted another 40+ spam pages.
More to go but 'nuff for me today. Anyone else may continue:
https://wiki.osgeo.org/index.php?search=avg&title=Special%3ASearch&go=Go
thanks
Markus
To get back to this matter.
I configured the ConfirmAccounts Extension to send notifications of incoming requests to this list, so that anybody on this list could take action. But the list administrator, would not allow the notifications to be send to this list, maybe for good reason, because its considerable traffic. Now the mails go directly into my mailbox (I am willing to re-configure it to an official address).
None the less, someone has to take care of reviewing and handling wiki account request until first week of October from this Friday on, because I will not be available during this time.
Cheers,
Christian
Am 04.09.2016 um 12:17 schrieb Christian Willmes:
Hello,
I unblocked Harry, because he is definitely not a spammer! In contrary,
he offered me a lot of really helpful information about how to fight
spam in a mediawiki, because he has knowledge from the OpenStreetMap and
the Open Knowledge Foundations wiki instances on this topic.I recently blogged about the problem, after which Harry contacted me:
http://cwillmes.de/blog/2016/08/02/the-daily-kindergardening-of-osgeo-wiki-spammers/
Beside this, from next week (12th September) I will be mostly away from
internet until first week of October.I would like to ask others from this list to also decide on incoming
account requests:https://wiki.osgeo.org/wiki/Special:ConfirmAccounts
Currently we have about 3-5 requests a day to decide on. Additionaly, we
need to check the recent changes for span and block and mass delete
spammers and their contents (easy done via the block and mass delete
functionality).If you want to help, and do not have the according permissions in the
wiki, say so, and I will grand you this rights.Regards,
ChristianOn 04.09.2016 09:36, Markus Neteler wrote:
On Sun, Sep 4, 2016 at 2:05 AM, Brian M Hamlin <maplabs@light42.com> wrote:
Hi SAC -
a quick look shows a real Harry Wood, who is quite involved withOSM and
OSM Wiki.. SO perhaps Sandro is right .. I dont know what to do.. the wiki
is valuable to OSGeo.org.Looking at
https://wiki.osgeo.org/wiki/Special:Contributions/Harry_Wood
there is tons of spam which was recently created through this account.
So, perhaps compromised?When unlocking, for sure the pw must be changed.
Quick question: why redirect to a "spam" page rather than deleting the
spam pages completely? With the redirect still the ugly page titles
remain which carry spam messages.In the past it was enough to check for spam and then put that fake user
out..
This occurrance ranks as a new level of complexity in an attack..I fully agree.
Years ago, before Christian W. started, I was awarded a star of Spam
Blocker for my wiki tending efforts. Now, I dont know how to react to this..
the spammers are certainly winning,
they are paid pennies for this ?I suspect yes. Yet I don't understand why since the spam content is
rather useless, not even professional. Weird.Best
Markusand yet they foil diligent defense.
--Brian M Hamlin_______________________________________________
Sac mailing list
Sac@lists.osgeo.org
http://lists.osgeo.org/mailman/listinfo/sac_______________________________________________
Sac mailing list
Sac@lists.osgeo.org
http://lists.osgeo.org/mailman/listinfo/sac
On Sun, Sep 04, 2016 at 05:50:05PM +0200, Markus Neteler wrote:
More to go but 'nuff for me today. Anyone else may continue:
https://wiki.osgeo.org/index.php?search=avg&title=Special%3ASearch&go=Go
Anyone in the "Bureaucrats" group, looks like.
Do you want to add me there ?
--strk;
On Mon, Sep 05, 2016 at 10:20:56AM +0200, Christian Willmes wrote:
To get back to this matter.
I configured the ConfirmAccounts Extension to send notifications of
incoming requests to this list, so that anybody on this list could
take action. But the list administrator, would not allow the
notifications to be send to this list, maybe for good reason,
because its considerable traffic. Now the mails go directly into my
mailbox (I am willing to re-configure it to an official address).None the less, someone has to take care of reviewing and handling
wiki account request until first week of October from this Friday
on, because I will not be available during this time.
How about setting up an alias ? We have an alias to which we
receive LDAP mantra requests: sysadmin@osgeo.org. For the wiki
it could be better to have a separate one, to be clear it's
a different account type, maybe wikiadmin@osgeo.org ?
--strk;
Sure! Done.
Thanks for helping out.
Am 05.09.2016 um 10:45 schrieb Sandro Santilli:
On Sun, Sep 04, 2016 at 05:50:05PM +0200, Markus Neteler wrote:
More to go but 'nuff for me today. Anyone else may continue:
https://wiki.osgeo.org/index.php?search=avg&title=Special%3ASearch&go=Go
Anyone in the "Bureaucrats" group, looks like.
Do you want to add me there ?--strk;
_______________________________________________
Sac mailing list
Sac@lists.osgeo.org
http://lists.osgeo.org/mailman/listinfo/sac
+1
Yes wikiadmin@osgeo.org sounds good to me.
Am 05.09.2016 um 10:48 schrieb Sandro Santilli:
How about setting up an alias ? We have an alias to which we
receive LDAP mantra requests:sysadmin@osgeo.org. For the wiki
it could be better to have a separate one, to be clear it's
a different account type, maybewikiadmin@osgeo.org ?--strk;
On Mon, Sep 05, 2016 at 10:55:17AM +0200, Christian Willmes wrote:
+1
Yes wikiadmin@osgeo.org sounds good to me.
Could you file a ticket and a list (if known in advance)
of admin email addresses ? Being already on the sysadmin@ one
I'd rather stay out of this (that one has 4 people IIRC).
--strk;
Am 05.09.2016 um 10:48 schrieb Sandro Santilli:
>How about setting up an alias ? We have an alias to which we
>receive LDAP mantra requests:sysadmin@osgeo.org. For the wiki
>it could be better to have a separate one, to be clear it's
>a different account type, maybewikiadmin@osgeo.org ?
>
>--strk;
On Mon, Sep 05, 2016 at 10:54:33AM +0200, Christian Willmes wrote:
Sure! Done.
This is interesting, I just blocked user
"AVG Phone Number xxxx xxx xxxx"
How could such user get an account creation approved ?
--strk;
On Mon, Sep 5, 2016 at 11:44 AM, Sandro Santilli <strk@kbt.io> wrote:
On Mon, Sep 05, 2016 at 10:54:33AM +0200, Christian Willmes wrote:
Sure! Done.
This is interesting, I just blocked user
"AVG Phone Number xxxx xxx xxxx"How could such user get an account creation approved ?
It was not approved: on 15 January 2016 the Wiki was not protected by
user creation moderation [1].
Fatal error as we learned some hours later [2]...
Markus
[1] thread: https://lists.osgeo.org/pipermail/sac/2016-January/thread.html#6263
[2] thread: https://lists.osgeo.org/pipermail/sac/2016-January/thread.html#6272
On Mon, Sep 05, 2016 at 10:45:49AM +0200, Sandro Santilli wrote:
On Sun, Sep 04, 2016 at 05:50:05PM +0200, Markus Neteler wrote:
> More to go but 'nuff for me today. Anyone else may continue:
>
> https://wiki.osgeo.org/index.php?search=avg&title=Special%3ASearch&go=Go
Fully cleaned (done 50), next challenge:
https://wiki.osgeo.org/index.php?title=Special%3ASearch&profile=default&search=tech+support&fulltext=Search
Please someone else join the effort (who else wants to be a burocrat?)
--strk;
Ok, lets file this ticket as soon as we are more people than just me who want to receive this notifications... 
Meanwhile, we got a new account request, If you want you can take care of this one, so you can check out how the ConfirmAccounts works?
https://wiki.osgeo.org/wiki/Special:ConfirmAccounts
Cheers,
Christian
Am 05.09.2016 um 11:37 schrieb Sandro Santilli:
On Mon, Sep 05, 2016 at 10:55:17AM +0200, Christian Willmes wrote:
+1
Yes wikiadmin@osgeo.org sounds good to me.
Could you file a ticket and a list (if known in advance)
of admin email addresses ? Being already on the sysadmin@ one
I'd rather stay out of this (that one has 4 people IIRC).--strk;
Am 05.09.2016 um 10:48 schrieb Sandro Santilli:
How about setting up an alias ? We have an alias to which we
receive LDAP mantra requests:sysadmin@osgeo.org. For the wiki
it could be better to have a separate one, to be clear it's
a different account type, maybewikiadmin@osgeo.org ?--strk;
_______________________________________________
Sac mailing list
Sac@lists.osgeo.org
http://lists.osgeo.org/mailman/listinfo/sac
On Mon, Sep 05, 2016 at 04:25:31PM +0200, Christian Willmes wrote:
Ok, lets file this ticket as soon as we are more people than just me
who want to receive this notifications...Meanwhile, we got a new account request, If you want you can take
care of this one, so you can check out how the ConfirmAccounts
works?
Markus was faster and rejected it alrady, so I rejected an application
on hold for feedback which was not received since August 1st.
--strk;
On Mon, Sep 5, 2016 at 12:11 PM, Sandro Santilli <strk@kbt.io> wrote:
On Mon, Sep 05, 2016 at 10:45:49AM +0200, Sandro Santilli wrote:
On Sun, Sep 04, 2016 at 05:50:05PM +0200, Markus Neteler wrote:
> More to go but 'nuff for me today. Anyone else may continue:
>
> https://wiki.osgeo.org/index.php?search=avg&title=Special%3ASearch&go=GoFully cleaned (done 50), next challenge:
https://wiki.osgeo.org/index.php?title=Special%3ASearch&profile=default&search=tech+support&fulltext=Search
BTW:
https://wiki.osgeo.org/wiki/Special:Nuke
works nicely for mass deletion of spam pages and even accepts pattern like
%bla-someting%
Markus