[ZWeb] Collector spam

Jens Vagelpohl jens at dataflake.org
Fri May 12 04:38:47 EDT 2006


-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1


On 12 May 2006, at 09:12, Michael Haubenwallner wrote:

> /!\ Current spam activities force a change in Collector security- 
> policy:
> You need to be logged into your zope.org account to add issues and  
> comment on existing issues

Is this a statement or a proposal? ;)

To be honest, having been on the receiving end of collector spam very  
often myself on my own site I think it is a _good idea_ to prevent  
anything becoming visible that anonymous users (or bots) type into  
web forms. There are many ways to go about it, and for zope.org it  
would probably be a good idea to say "you need an account and you  
must log in".

On the other hand many people will argue that this creates an  
obstacle and raises the bar for people who might be helpful by  
providing feedback, yet can't be asked to log in. This argument has  
always seemed unsolveable for me.

jens

-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.1 (Darwin)

iD8DBQFEZEmXRAx5nvEhZLIRAsnYAKCL6YXhxpcAdhIW2U4MA34Y7RMqwwCfZoee
wUCFzZB2tNLPYf9yF3alWcI=
=/Rzo
-----END PGP SIGNATURE-----


More information about the Zope-web mailing list