[Tilesathome] Upload permissions for distributed server (was: Distributed server idea)

[OJW]

On Friday 20 July 2007 17:05, Frederik Ramm wrote:
> GPG signing will not prevent the uploading of spam, it will only make  
> sure that you can eliminate the account responsible *after* the  
> damage has been done.


Exactly.  Without the signatures, somebody might be uploading offensive images 
to random locations every few minutes, and you have no way of stopping them 
because you don't know who they are

(You also can't locate their other uploads, so you can't do a "re-render where 
user=5")

Especially in the multi-server environment, where you might not receive the 
tileset directly (you could pull it from another server) and the other server 
might even be adding its own malicious images, or lying to other servers 
about the source of images.

Of course, you could decide to trust anybody who emails ben asking for an 
upload password, and just accept that if any of them mess with the data, you 
have no way to stop the vandalism in progress.  

- that hasn't been something I wanted to test, because I know how much effort 
that wikipedia needs to put into stopping spam on an 
anyone-can-publish-anonymously system (i.e. many people working full-time 
just on detecting, blocking, and reverting spam).