Page MenuHomePhabricator
Create Task
Maniphest T293866

emailuser ratelimit should make use of user-global
Closed, ResolvedPublic
Actions

Description

MediaWiki (as configured by Wikimedia) imposes rate limits on emailing other users at 20 mails/user/day. Unfortunately, the limit looks to be per wiki currently. That gives users an option to bypass that limit easily, by emailing from multiple wikis. Since most wikis we operate are connected via centralauth, the wiki you decide to do emailing from doesn't matter much (it only affects language of the footer).

I propose switching to user-global, which will enforce the current rate limit at all wikis combined (so if you send 10 mails from enwiki, 10 mails from enwiktionary, you wouldn't be able to send another 10 from enwikiversity).

This is likely User-notice worthy.

Details

Subject Repo Branch Lines +/-
emailuser ratelimit: Use user-global rather than user operations/mediawiki-config master +1 -1
Customize query in gerrit

Related Objects

Event Timeline

Urbanecm created this task.Oct 20 2021, 8:33 AM
Restricted Application added a project: User-Urbanecm. · View Herald TranscriptOct 20 2021, 8:33 AM
Restricted Application added a subscriber: Aklapper. · View Herald Transcript
Urbanecm renamed this task from Change emailuser ratelimit to use user-global to emailuser ratelimit should make use of user-global.Oct 20 2021, 8:33 AM
gerritbot added a comment.Oct 20 2021, 8:34 AM

Change 732260 had a related patch set uploaded (by Urbanecm; author: Urbanecm):

[operations/mediawiki-config@master] emailuser ratelimit: Use user-global rather than user

https://gerrit.wikimedia.org/r/732260
gerritbot added a project: Patch-For-Review.Oct 20 2021, 8:34 AM
Urbanecm moved this task from Backlog to Waiting on review on the User-Urbanecm board.Oct 20 2021, 8:34 AM
Zabe awarded a token.Oct 20 2021, 10:23 AM
Amorymeltzer subscribed.Oct 20 2021, 10:39 AM
Quiddity subscribed.Oct 21 2021, 6:12 PM

@Urbanecm hi, 3 questions:
(1) When do you expect this change to be live?
(2) Do you have any suggestions for what the Tech News entry should say? I would guess something like:

There is a limit on the amount of emails a user can send each day. This limit is now global instead of per-wiki. This change is to prevent abuse.

(3) Also I wonder if this should be included the week after the change is live, to prevent BEANS issues? Thanks.
Quiddity moved this task from To Triage to Not ready to announce on the User-notice board.Oct 21 2021, 6:13 PM
Urbanecm added a comment.Oct 22 2021, 7:18 PM
In T293866#7449122, @Quiddity wrote:

@Urbanecm hi, 3 questions:
(1) When do you expect this change to be live?

Sometime next week. Would you like me to schedule an exact date for it?

(2) Do you have any suggestions for what the Tech News entry should say? I would guess something like:

There is a limit on the amount of emails a user can send each day. This limit is now global instead of per-wiki. This change is to prevent abuse.

LGTM!

(3) Also I wonder if this should be included the week after the change is live, to prevent BEANS issues? Thanks.

Ideally, yes. Thanks for pointing this out.
Quiddity added a comment.Oct 22 2021, 7:22 PM
In T293866#7452180, @Urbanecm wrote:

Sometime next week. Would you like me to schedule an exact date for it?

Nope, no need for an exact date - I now know to place this in the following week's issue! Thanks again.
Quiddity moved this task from Not ready to announce to Announce in next Tech/News on the User-notice board.Oct 22 2021, 7:23 PM
Quiddity moved this task from Announce in next Tech/News to In current Tech/News draft on the User-notice board.Oct 28 2021, 5:57 PM
gerritbot added a comment.Oct 28 2021, 6:51 PM

Change 732260 merged by jenkins-bot:

[operations/mediawiki-config@master] emailuser ratelimit: Use user-global rather than user

https://gerrit.wikimedia.org/r/732260
Stashbot added a comment.Oct 28 2021, 6:53 PM

Mentioned in SAL (#wikimedia-operations) [2021-10-28T18:53:07Z] <urbanecm@deploy1002> Synchronized wmf-config/InitialiseSettings.php: 4e0200e3f5ad9c7514ddbeda6f7ee4f8b5ed2ec7: emailuser ratelimit: Use user-global rather than user (T293866) (duration: 01m 04s)
Urbanecm closed this task as Resolved.Oct 28 2021, 6:53 PM

Done.
Maintenance_bot removed a project: Patch-For-Review.Oct 28 2021, 7:10 PM
Base subscribed.Nov 4 2021, 12:47 PM
Quiddity moved this task from In current Tech/News draft to Already announced/Archive on the User-notice board.Nov 4 2021, 7:26 PM
Ladsgroup edited projects, added User-notice-archive; removed User-notice.Aug 13 2022, 1:44 PM
Content licensed under Creative Commons Attribution-ShareAlike (CC BY-SA) 4.0 unless otherwise noted; code licensed under GNU General Public License (GPL) 2.0 or later and other open source licenses. By using this site, you agree to the Terms of Use, Privacy Policy, and Code of Conduct. · Wikimedia Foundation · Privacy Policy · Code of Conduct · Terms of Use · Disclaimer · CC-BY-SA · GPL