comments etc by suspended users are shown in the web UI
Bug #695288 reported by
Robert Collins
This bug affects 1 person
Affects | Status | Importance | Assigned to | Milestone | |
---|---|---|---|---|---|
Launchpad itself |
Triaged
|
Low
|
Unassigned |
Bug Description
We suspend users that are abusing the site; generally - I think always in fact - we'd be happy to have all their changes reverted. See https:/
A similar thing we could do is just not show comments/bugs etc *by* suspended users. By checking the account status when showing them we could avoid large db updates, and be able to revert this if the account is reenabled. It would also mean we don't need to chase down an unknown number of spam comments.
Changed in launchpad: | |
importance: | Undecided → Low |
status: | New → Triaged |
To post a comment you must log in.
While I agree that it would be useful (though extremely difficult) for administrators to manually specify the automatic reversion of all changes by a user (as suggested in Bug 520413), I don't think that all changes by all users suspended for abuse should be automatically reverted.
Besides the problem that you allude to (that an account could be wrongly disabled and later re-enabled), I see four problems with automatically reverting all changes by suspended users:
(1) Some users might contribute significantly, and then their login credentials could be obtained by a spammer or otherwise abusive user. If you contributed to numerous projects in numerous ways over a period of years (or even if you contributed just once to one project), and then you logged in on a computer infected with malware and got your Launchpad identity stolen and abusively used by a third party, I doubt you'd want all your contributions to disappear overnight. The other contributors, and end users, who benefited from your contributions would probably be pretty unhappy about that too.
(2) There is another plausible, though much more unlikely, case, in which a user who contributes significantly becomes abusive. That could certainly justify suspending their account and reverting many of the changes they made on Launchpad (the abusive ones), but it would not justify reverting the others (the non-abusive ones that actually contribute).
(3) Such a feature, and (to a slightly lesser extent) the feature requested in Bug 520413, would arguably have politically bad consequences within the community. Erasing the impact of a user is currently difficult and has to be done through positive actions of other users (who can be credited, and thus also blamed, for doing so). That makes it less likely that personal attacks will escalate into the inappropriate labeling of an unpopular user as being sufficiently abusive to warrant suspending; it also makes it less likely that angry users will delete other users' edits to get back at them. I am not suggesting that such behavior is a major risk on Launchpad, but it is a real risk, and I think that the potential benefit of better protecting our community from abusive users should be weighted against the possible harm of giving people powerful ammunition with which to make bad situations worse.
(4) Automatically reverting all changes by users suspended for abuse would actually constitute a security vulnerability. Besides the obvious exploit of targeting committers of security fixes on code.launchpad.net for identity theft and spamming with their identity to get their security fixes automatically reverted, there's an additional, more subtle possible attack: A user could create a Launchpad account, fix one or more security vulnerabilities in one or more Launchpad-hosted projects, and then, after a substantial duration, act abusively until his/her account is suspended. Then the security vulnerabilities, long ago believed (correctly) to have been fixed, would come alive again, and he/she would know about their exploitability long before anyone else would likely figure it out.
(Of course, that illustrates one of the problems with the claim in Bug 5...