Ask Your Question

tim's profile - activity

2020-09-01 10:42:10 -0500 received badge  Famous Question (source)
2018-11-27 14:35:14 -0500 received badge  Notable Question (source)
2018-06-01 11:37:32 -0500 received badge  Notable Question (source)
2018-06-01 11:37:32 -0500 received badge  Popular Question (source)
2017-11-01 13:06:19 -0500 received badge  Popular Question (source)
2017-11-01 13:06:19 -0500 received badge  Notable Question (source)
2017-01-18 13:03:14 -0500 received badge  Popular Question (source)
2016-12-02 16:31:00 -0500 received badge  Famous Question (source)
2016-08-09 04:25:06 -0500 received badge  Notable Question (source)
2016-02-25 00:49:54 -0500 received badge  Famous Question (source)
2016-02-24 15:25:12 -0500 received badge  Famous Question (source)
2016-02-17 16:52:42 -0500 received badge  Famous Question (source)
2016-02-01 01:19:33 -0500 received badge  Famous Question (source)
2016-02-01 01:19:33 -0500 received badge  Notable Question (source)
2016-02-01 01:19:33 -0500 received badge  Popular Question (source)
2016-01-28 02:46:33 -0500 received badge  Famous Question (source)
2015-12-16 09:21:37 -0500 received badge  Notable Question (source)
2015-12-16 09:21:37 -0500 received badge  Popular Question (source)
2015-09-08 07:16:05 -0500 received badge  Famous Question (source)
2015-07-27 13:34:19 -0500 asked a question It looks like there is a big in the un-accept answer code - affects karma

We left the default settings for the negative 5 points for unaccepting an answer.
As a result of some slowness in the UI and buggy code it looks like a user can lose far more than 5 points if the original question answerer keeps clicking on accept/unaccept button.

2015-06-19 13:21:19 -0500 received badge  Famous Question (source)
2015-04-01 20:57:07 -0500 received badge  Popular Question (source)
2015-04-01 20:57:07 -0500 received badge  Famous Question (source)
2015-01-28 20:08:26 -0500 asked a question Is there a bug in the maximum comment length?

I have set the max length for a comment, but it does not seem to be enforced.

Note that in settings I changed the default editor for comments to be the same as questions.

2015-01-14 16:56:09 -0500 asked a question How can I see a list/report of the daily or weekly notifications

I would like to see a list of the users who are sent emails for the daily/weekly notifications. Is this possible through Ask or another method?

2015-01-14 16:42:47 -0500 answered a question My users are not getting update by email

Please see this question about running cron job or windows scheduler http://askbot.org/en/question/11742/how-does-askbot-send-email-notifications/

2015-01-14 16:35:51 -0500 commented question users don't get notification email

I believe you do have to set up a cron job or windows task to run the email notifications. I think the "Real time" notifications work without it.

2015-01-14 16:23:56 -0500 commented question What is the exact domain market share of Godaddy?

Spam. please deleet, flag, etc. I do not have the rep points for either

2015-01-14 16:23:10 -0500 received badge  Commentator
2015-01-09 06:46:29 -0500 received badge  Famous Question (source)
2014-12-21 21:04:10 -0500 edited question How do unauthenticated users get onto our site?

We have a site that requires validation with an outside authentication service (a wiki/LDAP) but yet we see users with obvious bad names on our site and "posting" questions with nonsense in them.

It is apparent that there are others who use AskBot with similar issues.
I have a few questions:

  • How did these users create accounts for themselves if they did not use our (what we thought was a) sinlge external authentication?

  • How can we stop this from happening?

  • How did these bots find the site? (we don't publish it - it is a closed site)

EDIT Note that I was able to reproduce the ability to sign in with nonsense accounts by navigating to [mysite]/account/signup/?login_provider=local there is no way to get there from a UI as far as I could tell, but the url works and allows a person to signup.

2014-12-21 21:02:57 -0500 commented answer How do unauthenticated users get onto our site?

.../account/signup/?login_provider=local

2014-12-21 13:04:53 -0500 commented answer Can I delete users from the mysql auth_user table with no bad side effects?

thanks. we actually want to delete all the users content in these instances - these were spam accounts.

2014-12-21 13:02:33 -0500 commented answer What does the 'Activate local password login' checkbox control?

So I guess my question should be, how do we allow just the ldap lgin - since we do not want the 'local' email/password login at all.

2014-12-21 12:59:45 -0500 commented answer How do unauthenticated users get onto our site?

The attempts apparently just came through the usual registration page. Although it was not possible to get to that page through the UI, the url still worked. We are hosting on our own server. Users must be registered to see content/post. We fixed this by using the domain whitelist for emails in order to register.

2014-12-19 10:52:13 -0500 commented answer The API /users/id does not give proper information

Great. Look forward to getting it

2014-12-14 22:25:45 -0500 answered a question Can I delete users from the mysql auth_user table with no bad side effects?

Instead of doing it from mysql I did it from the django admin page:

YourSiteUrl/admin

and

.../admin/auth/user/

however, I don't believe this is recommended by the implementors of the software - it is recommended to block them, however this is a tedious task if there are more than a few (and when the spammers sign up it usually means trouble...)

2014-12-14 22:21:07 -0500 received badge  Famous Question (source)
2014-12-13 22:29:47 -0500 asked a question What is the latest version of askbot? How can I find the latest version(s)?

In looking at this question: http://askbot.org/en/question/11343/logging-user-access/

I noted that we do not have that log file. Perhaps we have an old version? We're using 'Powered by Askbot version 0.7.49' But that question is over a year old and we just started up our site a few months ago so I am not sure why we would not have that working.

Is this a setting?

2014-12-13 21:50:29 -0500 answered a question How do I fix the 'Activate local password login' back to 'true' in the askbot settings if I am locked out of the site?

While this is not really an answer, I just clicked on the "recover password" link at the bottom of the login page. And then the email I received let me click a link and I was logged in automagically. I was then able to put back the local login.

So this was a way to circumvent the login process

2014-12-13 21:42:58 -0500 asked a question How do I fix the 'Activate local password login' back to 'true' in the askbot settings if I am locked out of the site?

I apparently disabled all authentication methods via the ui - and now I cannot get back onto the site.
I assume there is a way to set this in the settings on the server/in the file system. how can i do that. it is not obvious to me where those settings are. thanks

2014-12-13 21:16:51 -0500 commented answer Logging User Access

upgraded to what? I do not see that file

2014-12-13 21:12:47 -0500 asked a question Are there logs we can look at to see how a user created an account?

We would like to know how users are creating their spam accounts so we can stop them. We have been unsuccessful so far.

2014-12-13 21:03:17 -0500 asked a question What does the 'Activate local password login' checkbox control?

We want only ldap/external authentication to work. We have noticed some spam users and questions showing up. If we uncheck that button will this achieve what we want?

We're also going to whitelist known domains/emails.

I tried uploading a file and pasting an image here to show what I mean, but I am apparently not allowed since I don't have enough rep.

If you go to

settings/LOGIN_PROVIDERS/

and then look at the Activate local password login checkbox you will see what I am asking about.

2014-12-13 19:40:57 -0500 commented answer How to delete groups and tags?

Will that have side effects/consistency ramifications?

2014-12-13 19:30:43 -0500 commented answer How do I mass delete all questions from a user?

they just make up new email addresses anyway - not sure it is important to keep track of them.