Replaced by Security - after creating a Security task, please add the corresponding code project(s) to the project tags of your task!
Please see https://www.mediawiki.org/wiki/Reporting_security_bugs for how to report Security issues.
Replaced by Security - after creating a Security task, please add the corresponding code project(s) to the project tags of your task!
Please see https://www.mediawiki.org/wiki/Reporting_security_bugs for how to report Security issues.
Published, as it is a duplicate of T25227: Use token when logging out.
Change 341135 abandoned by markahershberger:
thumb.php should use the ImgAuthBeforeStream hook
I would rather do what @Anomie suggested, that is using PrivateTmp=true for php-fpm. I'll look into it.
Google Chrome includes a password generator (and manager) these days that they prompt a user to use any time a password field with no saved passwords is focused:
Change 505644 merged by jenkins-bot:
[mediawiki/core@master] Synchronize allowed attributes for <audio> with Parsoid/TimedMediaHandler
Change 505644 had a related patch set uploaded (by C. Scott Ananian; owner: C. Scott Ananian):
[mediawiki/core@master] Synchronize allowed attributes for <audio> with Parsoid/TimedMediaHandler
The minimum viable version is merged now, you need to set the policy to [ 'value' => ..., 'forceChange' => true ] and you will not be allowed to skip the password change screen on login. We should also add a grace period but as discussed above that's rather more complex.
Change 481819 merged by jenkins-bot:
[mediawiki/core@master] Add force option to password policy
Change 481819 had a related patch set uploaded (by Gergő Tisza; owner: Gergő Tisza):
[mediawiki/core@master] Add force option to password policy
In T197136#4280122, @Bawolff wrote:You would also have to be careful about the case where the right is just checked for asethic purposes (e.g. adding a link to the special page if the user has the right to do the action)
I imagine the minimum viable version would look something like this:
In T151011#4808817, @Tgr wrote:There are two types of good password generation:
- A medium-length string of random uppercase/lowercase/numbers (say 12 or 16 characters), with easily confusable characters removed from the pool.
- A long human-readable text of space-separated random dictionary words (probably 5 or 6 words), e.g. diceware.
I'm not sure the first is worth doing as the only sane way to use such passwords is a password manager and that can generate random passwords just fine. (Maybe there are less technical users who have problems with password managers and just write the passwords down, but those are better served by diceware style passwords anyway since words are easier to type.) OTOH it is very trivial to implement.
The second is good for people who need to memorize the password for some reason, or need to type it in often (ie. often log in on foreign machines). The best library I have seen for it is grempe/diceware (test page), which has support for ~20 languages (of course it would be fairly trivial to add more). Word lists are around 100K which is a bit large but they don't exactly make an effort to reduce the size, which could be done pretty easily.
I'm not sure how worthwhile this would be if we ever got a decent password strength meter deployed. Though digging through the history, that might be a big if.
There are two types of good password generation: