Community noticeboard/Archive 25

__NOINDEX__

Problem tabber
Hi, there, Would you know how to make a caption only appear in one tabber window? I know how to make it appear in both, but when I try to do it in one, the caption shows up in bold, as you can see here: Thanks in advance. Darkrai18 (talk) 13:49, 14 November 2021 (UTC)


 * Hello, my apologies for delay in responding. Has this been resolved? I have located the page you mean and it seems like you managed to get the caption going in one and not the other. If you meant something else, I ask for more information on what is intended. --Raidarr (talk) 12:43, 17 November 2021 (UTC)
 * Hi . Yes I managed, but the text appears in bold. I want it not to be. Sorry for the delay. Darkrai18 (talk) 09:16, 19 November 2021 (UTC)

Question for category pages
Hi, it's me again. Do you know how to make the category pages look more like Fandom's than Wikipedia's? For example having icons next to the category names, or "trending pages". Thanks in advance. Darkrai18 (talk) 22:09, 19 November 2021 (UTC)

Improving password standards on Miraheze

 * The following discussion is closed. Please do not modify it. Subsequent comments should be made in a new section.
 * Site Reliability Engineering would like to thank all participants in this Request for Feedback for sharing their thoughts, comments and concerns. Your feedback is very important to us and always plays an important role in any decision-making and we assure you that we will take all of this feedback into consideration. For more technical information on this task, please see T7713. Thank you! Agent Isai  Talk to me! 03:57, 23 November 2021 (UTC)

Hello all,

In order to comply with the latest security standards, the SRE team wishes to slowly increase password requirements to require that passwords are at least 12 characters.

The plan we thought of would be to progressively institute these requirements: first for global groups, after for local administrators, bureaucrats and bots and finally to extend the longer password requirements to the entire user base.

Before we go ahead with these changes we would like to get feedback from the community, so please do feel free to raise any concerns or provide any feedback you may have or ask us questions about this change and we would be happy to respond.

Thanks, Reception123 (talk) ( C ) 15:09, 4 September 2021 (UTC)


 * 1) My feedback is that this policy is as dumb as most of our Covid-related policy that assumes attaining Zero Risk is more important than living our lives.  Anyone who wants the additional security of a longer password can have one instantly.  There is no need to mandate that the entire user base do anything (except perhaps to those with power over the website) except to pat yourselves on the backs for having done something.  If someone is actually asking for this, then implement a customization option for individual wikis where their administration can enforce password length if desired.   20:34 4-Sep-2021
 * 2) Is there a demonstrated need on Miraheze that would entail people changing in this way? I have not seen enough of a wider requirement or evidence on the internet of widespread compromise to think this is in any way necessary. --Raidarr (talk) 00:26, 5 September 2021 (UTC)
 * Hmmmm, not sure if this is exactly necessary. I have yet to see any reports of recent account attacks. DarkMatterMan4500 (talk) (contribs) 23:02, 9 November 2021 (UTC)
 * How is the server protected against such attacks? I think that adding a one second delay after each failed login attempt for a specific user name and IP would prevent such attacks from beeing successful, am I wrong? WHen yes, where is the flow in my considerations? LilyLilyu - smile.svg talk and I will listen · Lilypond Wiki 08:13, 11 November 2021 (UTC)
 * 1) Support for global groups, but not for local groups. The current status quo for many of Miraheze's affairs is to let local wikis govern themselves and decide on their own policies, and only intervene when there is a legal obligation to do so, or if there is a ToU violation. Global groups should absolutely have strict password policies, because users with such groups can affect all of Miraheze. However, for local admins and bureaucrats, it's best to leave strong passwords as a recommendation rather than a requirement. Local wiki communities can decide on their own password policies if they so choose. As for the entire user base, I don't think it's necessary. A good idea in theory, but in practice it might not do much to encourage better password use. For all we know, someone who's password is the unacceptably insecure "password" could easily change it to "passwordpassword" to get their password up to 16 characters and meet the requirement, yet still have a terrible password.
 * Also, may I ask, what exactly are the "latest security standards" that you're referring to? If by "latest security standards", we mean "using HTTPS", "hashing passwords", and "keeping up to speed with security patches", we're already doing that, right? — k6ka  🍁 ( Talk ·  Contributions ) 23:24, 9 November 2021 (UTC)
 * 1) not sure what that current mandated length is, but 12 seems too long to me. 8, sure, I'd understand, that's common practice. enforcing numbers and special characters, also good. but 12 digits? for casual users? we'd see a huge uptick in password resets. I can maybe see the benefits for global groups, admins, bots, the like (i.e. people who's accounts could damage wikis if compromised) but for someone who logs in once every six months? not worth it imo. also, which security standards are you referring to? you mention "the latest" - who's latest? Amazingakita (talk) 08:57, 10 November 2021 (UTC)
 * 2) I only want to say that lenght and complexity checkings are ok (mine already is complex and long enough) but I don't agree with checks that compare the previous password with the new one. If I change a password (imagine, because I want it, not because a data breach) I don't want to lose that password forever. Jakeukalane (talk)
 * Hi, I'm also wondering what the "latest security standards" are. Is it some kind of policy that Miraheze has to abide by? Regardless of that, I'm ok with enforcing stronger passwords for users who have potentially destructive permissions, both locally and globally (deleting, blocking, editing interface, etc.). For users without these permissions, maybe there could be a warning with a "your password is not secure" message that the user can dismiss? Just an idea! --Ondo (talk) 10:45, 10 November 2021 (UTC)
 * 1) Pls do not change the current standards for passwords on Miraheze. I totally agree with Spike that everyone is free to chose a password as long as he likes. I would really hate to change my Miraheze passwords. All these password requirements (special character, number, small/big letter etc.) on many websites are really annoying me, so pls do not introduce a new password policy, thank you, LilyLilyu - smile.svg talk and I will listen · Lilypond Wiki 21:29, 10 November 2021 (UTC)
 * 2) Please DO increase password security. This is common sense, and a reality online to protect people's accounts from being easily broken into. I use a password manager that generates random string 20+ character passwords. Working in tech, I can say that increases in password security is just the way things are going to keep modernizing. Fighting that makes little sense because it's going to have to be done elsewhere eventually anyhow and is increasingly insisted on, on other sites. Insecure accounts can affect the Miraheze community because of the unified login; these logins being usable on other wikis can be problematic when an account is easily broken into. I would hope people would consider please keeping up with the tech and being realistic about what that often looks like today. CrystalClear (talk) 22:10, 10 November 2021 (UTC)
 * This is frankly not my experience even including services like Discord, Protonmail and Gmail (though Gmail is aggressive in pushing alternative functions anyways). The path of inevitability is not as clear cut as this would make it seem, at least from allegorical experience that would be easy to find. Though this is not to say that these password changes wouldn't have some benefit, and that people shouldn't be going well past them anyways. But frankly, unless you have responsibility that obliges you to more cutting edge protection, it's discretion I'd rather see users retain until it is demonstrably no longer viable on the internet. --Raidarr (talk) 09:18, 11 November 2021 (UTC)
 * 1) I do not see a strong need to increase the password requirements as proposed. As with K6ka's comment, I do  increased password security and two-factor authentication for users holding global groups (to be clear, wiki creator and interwiki administrator should not count as global groups for this purpose). I'm speaking of the SRE, Trust and Safety, and Stewards groups, principally because the   group on Miraheze is not the same as the   group on other wikis, as Miraheze has ManageWiki which provides for the granting of user group permissions without having to have the   user right that would otherwise provide access to the most sensitive, restricted user groups. I also feel that twelve characters is too much, but would support a 9-10 character minimum, with a combination of a minimum of one capitalized character, one non-alphanumeric character, and a mix of numeric and alphabetic characters. Dmehus (talk) 01:54, 15 November 2021 (UTC)
 * 2) I this as well. Coming from a company where this has been mandatory since years I would like to have this level of security here as well, especially because of the global login. Password managers can deal with even longer PWs, just saying. Soukupmi (talk) 07:58, 15 November 2021 (UTC)
 * 3) You say "latest security standards", yet provide no evidence for how this is considered to be so. Considering that I haven't seen any widely used platforms make such a change to password length, this change seems to lack any sort of proper reason behind it from what I can see. K599 (talk) 20:53, 15 November 2021 (UTC)
 * 4) It is my opinion that in this matter it is necessary to take a balanced and reasonable approach rather than a overreaching one. Unlike some comments above suggest I do not believe that it is unreasonable to require a certain password length and I think this is a sensible approach. That being said I do not agree with imposing a 12 character password for all users indiscriminately. This is because as many users have said before me the SRE team does not provide us with any justification or evidence to justify such a measure. If there have not been any accounts that have been hijacked why is it necessary to take such a measure right now? Is there a security risk we do not know about? I believe that in terms of regular users there is no need to change the current requirements and that users with low level access should make their own decisions regarding password length. I have personally not seen another website that has such strict requirements for lay-users. However, I do think that all global groups with significant power (such as Stewards, System Administrators and Global Sysops) should have this requirement as an extra safety precaution. I would not necessarily disagree with local groups such as administrator and bureaucrat having the requirement but I tend to lean towards the direction of them not having this requirement for the time being unless an actual need is proven. In conclusion, my current opinion is that an all encompassing requirement is inappropriate at the time but I would be willing to change my opinion if the SRE team will provide me with a reasoned explanation and justification for these measures other than just to be very careful. To be more clear after reading all the comments again my opinion is closest to that of Dmehus which I would support and which I find the most reasoned. --DeeM28 (talk) 20:12, 16 November 2021 (UTC)


 * The above discussion is preserved as an archive. Please do not modify it. Subsequent comments should be made in a new section

Interwiki
hi, staff you can help me my two wiki 麥克百科 wikiand日語-麥克百科事典 wiki inter language? thanks.--Msnhinet8 (talk) 08:14, 22 November 2021 (UTC)
 * ✅, check your local Special:Log/interwiki for confirmation. Agent Isai  Talk to me! 08:17, 22 November 2021 (UTC)
 * ok,thanks.--Msnhinet8 (talk) 08:22, 22 November 2021 (UTC)

How to change font
Hi, I want to customize the font of my wiki. I tried to change the css file a lot of ways, but I can't use a google font (EB Garamond in particular). I tried a lot of possibile sintaxes, but nothing seems to work. Adri Ikharai (talk) 07:31, 23 November 2021 (UTC)

I've had help with this before, maybe it'll help you. Raichu&#39;s Endless Nights (talk) 07:52, 23 November 2021 (UTC)


 * Tibi gratias fa pro me servando Adri Ikharai (talk) 08:44, 23 November 2021 (UTC)

Page previews
Is it possible to add page previews to a miraheze wiki, like the ones that appear on Wikipedia? (https://www.mediawiki.org/wiki/Page_Previews) TomebinderL (talk) 15:16, 23 November 2021 (UTC)


 * Yes, it is. To enable it, please go to Special:ManageWiki/extensions on your wiki and enable "Popups" Agent Isai  Talk to me! 16:03, 23 November 2021 (UTC)
 * Thanks! TomebinderL (talk) 18:04, 23 November 2021 (UTC)

Where is my old request?
I had a Fancade Wiki request. Because I lost it, I had to create a new one. It appears declined. Can you find the old one? TylerMagee (talk) 21:36, 23 November 2021 (UTC)


 * Your original request for a  is #21420. Both your old and new request were declined because they lacked a good reason. Please edit your wiki request and expand on your wiki's scope in 2-3 sentences (e.g. "My wiki will focus on X and will document Y and Z", etc.) and we'll process it again, thanks.  Agent Isai  Talk to me! 22:23, 23 November 2021 (UTC)

Templates and tags
Hi, Could you please tell me where I may find
 * a list of common templates like as in m2 ?
 * a list of common tags like  ·   ·  ·  · [[Category:]]
 * Translations: · ·  · 
 * It's already there. You want to put it on your wiki or what? Anpang   Talk   Stuff  02:18, 28 November 2021 (UTC)

One of my posts that I last updated November 18th is gone
I had a post on the noticeboard that I intended to update regularly. I last updated it on November 18, and according to the edit history of the noticeboard, it was archived three days later, on November 21st. How long will it take to update Revibot to only archive posts that have had no activity for 14 days? I know how to retrieve my post, but I'm unable to do so because I'm posting from a Nintendo Switch (it has an internet browser, but it can't be easily accessed. There are many tutorials online on how to access it, if you want to), which doesn't have a copy-and-paste feature. Also, where can I put my post so that this doesn't happen again? Tali64³ (talk) 17:15, 25 November 2021 (UTC)

Problem with reCAPTCHA when creating a account
Hi, When I attempt to create an account, I get this : "reCAPTCHA validation failed: score retrieved from server is lower than the minimum required score. Please try again later. If problems persist, please contact sre-mediawiki@miraheze.org."

Does anybody knows why?

In fact no captcha appears, and there is no adblock or alike on my Firefox.

What appends ? -- Webmaster1 (talk) 21:57, 26 November 2021 (UTC)


 * Please email cvt@undefinedmiraheze.org to request they make an account for you. Agent Isai  Talk to me! 22:05, 26 November 2021 (UTC)
 * OK, I will. But here I wanted to know what happens.
 * Is that ok, if no captcha is proposed ? Isn't it a problem on miraheze.org ?
 * In fact I hate to have people at cvt(at)miraheze.org loose their time with such a boredom... Webmaster1 (talk) 22:30, 26 November 2021 (UTC)

Extensions not clickable
To allow Youtube embedding, I am trying to click on the Youtube extension box; however, none of the boxws in Special:ManageWiki/extensions are clickable? HID&#38;GEM (talk) 00:57, 28 November 2021 (UTC)


 * What exactly? Are the checkboxes grayed out? Anpang   Talk   Stuff  02:13, 28 November 2021 (UTC)
 * For the record, this was resolved on Discord. Agent Isai  Talk to me! 02:14, 28 November 2021 (UTC)