I am frequently unable to log in to grex due to the write and tel floods of a vandal. I propose only allowing writes to validated users. They are open to abuse same as outgoing ftp/telnet or email.19 responses total.
I support this proposal. Meaning, I support bringing this proposal to a vote.
Mcnally suggested disabling write and having only tel.
Since (as was pointed out elsewhere by user bertrand) they're the same program, just behaving differently based on what it's called, this will still require someone to patch and recompile the orville-write binary. I think bertrand's suggestion should work, however.
Is this something that needs to go through janc (the author of the program)? Otherwise, if he updates the program in any way without copying our changes, those changes will be undone.
It's something which should be acted on right away to solve the current annoyance, and then it should be brought up with Jan, with an explanation of the exploited behavior. If he wants to fix it then it's up to him.
Could we disable both write and tel until they are fixed or until we can vote on whether to disallow them to unvalidated users?
I've already done that. I'm one step ahead of you. :)
Thanks. It is nice to access email again.
unicorn, did you disable write and tel for everyone except members? If you did, I think you need to discuss this with staff. It is one thing to limit new users, and an entirely different thing to shut down *all* users access to a system resource. For example, we have never shut down current IDs' access to email, even if they are not validated.
Well, now that I've been to Agora, I can see why this is a problem.
Essentially this is going to have to be delegated to staff; the situation is too fluid for solutions to be codified in member votes.
Tel access is also disabled for members. I can send email to get someone's attention.
re #11: I second what Ken said re #9.
This was a temporary measure, cmcgee, as I'm sure you now know. I'll try to re-enable it after I've decided what the best way to do it is. I'd like to enable it for everyone but the newpeople group. Please bear with me.
I think I have this working acceptably via the sudo command, (transparently, so you don't need to enter a password), but you may get a message from sudo the first time you use write or tel. After that, you shouldn't notice any difference. Let me know if there are any problems. New users will still get a message telling them that the command they're trying to run is temporarily disabled. This message will have to be changed if we decide to make this change permanent. I'd like to do it without sudo, but I haven't yet thought of a way to do that without recompiling the write binary.
There's a trivially easy way to defeat your group check in #15, which I will mail to you, though I suspect it will be obvious.
Too late, I'm already one step ahead of mensa boy.
I've come up with a better way to disallow new users from using tel, write, and wall that doesn't require sudo. If anyone that isn't in the newpeople group has a problem with these commands, let me know.
Thanks for all your work unicorn.
You have several choices: