To LUGNET HomepageTo LUGNET News HomepageTo LUGNET Guide Homepage
 Help on Searching
 
Post new message to lugnet.admin.suggestionsOpen lugnet.admin.suggestions in your NNTP NewsreaderTo LUGNET News Traffic PageSign In (Members)
 Administrative / Suggestions / 1218
1217  |  1219
Subject: 
 Re: Some suggestions
Newsgroups: 
 lugnet.admin.suggestions
Date: 
 Wed, 30 Mar 2005 18:18:11 GMT
Viewed: 
 4488 times
  
On Wed, Mar 30, 2005 at 05:22:53PM +0000, Frank Filz wrote:
Ability to edit a post that is being authenticated. I often realize I
should have added something to a post just after I hit send. Since we
have to go through this extra step, why not add some functionality.

From a strictly paranoid point of view, that would be a bad idea.  Right
now, if I just randomly try auth strings until I hit one that's pending,
all I get is the ability to approve/deny what the original author wrote
(since the chance of me hitting a message I faked is much smaller than
hitting any random message).  But if we allow editing the post, I can
now change those author's words to be whatever I want.  So unless we
make edited posts shoot out another auth email (or require you to be
logged in), this feature would introduce a potential security risk.  Of
course, the risk might be deemed acceptable - I just thought I'd point
it out for consideration.

--
Dan Boger
dan@peeron.com



Message has 1 Reply:
  Re: Some suggestions
 
(...) What's the probability of hitting an auth string? It would be reasonable to only allow editing if logged on, or to re-authenticate the post. Hmm, definitely have to be logged on to see all the pending authentications, otherwise all you have to (...) (19 years ago, 30-Mar-05, to lugnet.admin.suggestions)

Message is in Reply To:
  Some suggestions
 
I know I've made these in the past, but I don't have time to dig up the original threads, so I'll just repost the suggestions for reference in the new list: Have a way for a member to view a list of all un-authenticated posts. This list could (...) (19 years ago, 30-Mar-05, to lugnet.admin.suggestions)

3 Messages in This Thread:

Entire Thread on One Page:
Nested:  All | Brief | Compact | Dots
Linear:  All | Brief | Compact

This Message and its Replies on One Page:
Nested:  All | Brief | Compact | Dots
Linear:  All | Brief | Compact
    
Custom Search

©2005 LUGNET. All rights reserved. - hosted by steinbruch.info GbR