More Swiki damage by socp-b.scsnet.com
Cees de Groot
cg at cdegroot.com
Fri Jul 26 23:42:05 UTC 2002
Craig Latta <craig.latta at netjam.org> said:
> Moderation could be good. Perhaps more convenient in the long term
>would be integration of public-key crypto?
>
Yup. It's bad, it sucks, but the kiddies are forcing us (I still hope to
get a couple of them into court one day, have them do some public duty
instead of keeping us sysadmins awake). Probably a web-of-trust setup
is the most straightforward - a couple of guys get their keys signed by
the Swiki key, and from there on it all flows on automatically. Could
be done with standard GPG mechanisms, or straight in Smalltalk (RSA is
quite simple in Smalltalk ;-)). After an edit, Swiki presents a challenge
(hash over the edit), which you sign with GPG and you paste the sig.
That, or an Advogato-style web. Could be better, certainly more fun, and no
necessity to sign things all the time.
Or we simply start with an email reg system. You register your mail address,
Swiki sends a code, you paste the code, and you get a cookie in your browser
to allow edits. It's a small hurdle, but probably big enough to scare off a
number of kiddies.
--
Cees de Groot http://www.cdegroot.com <cg at cdegroot.com>
GnuPG 1024D/E0989E8B 0016 F679 F38D 5946 4ECD 1986 F303 937F E098 9E8B
Cogito ergo evigilo
More information about the Squeak-dev
mailing list
|