[10:54:28] <Forza>	 Hello, good morning. 
[10:55:08] <Forza>	 Is there a way to mask the last part of IP addresses on anonymous edits? 
[11:34:15] <Iamthehuman1>	 Hello and big thanks for the awesome wiki engine. I just upgraded 6x wikis and 1x wikifamily of 2, but I noticed that a very vanilla wiki isn't honoring $wgReadOnly = ( PHP_SAPI === 'cli' ) ? false : 'This wiki is currently being upgraded to a newer software version.'; at all and I would be all done, except I don't understand why it don't block the Special:Version
[11:36:02] <Iamthehuman1>	 Forza: I'm not an insider on this, but I do remember that the Foundation's Board (or something) decided that we should mask some part of IP-addresses, but that is non-trivial and all the methods to do so have one or another downside, like usually all design choices have. Either the stuff is unsafe or it is unusable because it is so safe ;)
[11:37:03] <Forza>	 Yea 
[11:37:31] <Forza>	 I just don't like to log and display ips unless I have to. 
[11:39:29] <Iamthehuman1>	 I think there are 'safety vs. security'-questions, or one could say 'anonymity needs vs. need to police and patrol'-questions because the Internet is full of ... ewwwhh.. humans and bots
[11:41:54] <Iamthehuman1>	 The IPv6 address space has "only" 115792089237316195423570985008687907853269984665640564039457584007913129639936, which is to say 115 thousand trillion trillion trillion trillion trillion trillion possible addresses, so that is too many places for evil and vandals to lurk
[11:50:34] <Iamthehuman1>	 I'm going to backup and snapshot these wikis, but if anyone has any idea, why the wiki isn't reading the order to lock the database at all on this one quite vanilla wiki. It isn't public yet, so I cannot pass a link
[11:54:49] <Reedy>	 It's hard to know without seeing a lto more of your config, unfortunately
[11:55:44] <Iamthehuman1>	 Reedy: Just '$wgReadOnly = ( PHP_SAPI === 'cli' ) ? false : 'This wiki is currently being upgraded to a newer software version.'; at all and I would be all done, except I don't understand why it don't block the Special:Version' has no effect at all in LocalSettings.php
[11:56:17] <Iamthehuman1>	 sorry bad copypast, but I mean that uncommenting the line to lock the db, just does not work as it always does
[11:57:17] <Reedy>	 There's no way of us knowing whether it's int he right place, whether that wiki is actually executing that config file...
[11:57:58] <Iamthehuman1>	 'sudo service apache2 restart && sudo service memcached restart' did not help either
[11:58:54] <Iamthehuman1>	 Reedy: it is the last line in the config file, I just uncomment it whenever I need to upgrade and on all other wikis it locked up Special:Version. Maybe there is a silent syntax error somewhere, these are usually my fault, not you fine MediaWiki people
[12:02:27] <Iamthehuman1>	 I have never ever before seen this that the MediaWiki would not obey the db lock line when it is uncommented. The 7 other wikis did not exhibit this
[12:04:41] <Iamthehuman1>	 that wiki is for logged-in only, so that is only me at this point in time, so this is not as scary as it would be if a public wiki was behaving like this. I'll report back if I figure out, why does the db not get locked
[12:19:21] <Forza>	 You could simply block access in the webbserver and stop cron 
[12:29:47] <p858snake>	 Iamthehuman1: setting wgreadonly only displays a warning message, it won't block access to pages like Special:Version afaik
[12:33:15] <Iamthehuman1>	 hmmmmhhhh... now it locked and I did not change a thing
[13:05:09] <Forza>	 Is  it possible to disable user listing by other users? 
[13:05:52] <Forza>	 Like preventing Special:ListUsers and similar for everyone except admins? 
[13:12:37] <Reedy>	 Yeah
[13:32:55] <Forza>	 What should I be looking for? 
[13:34:56] <Reedy>	 You'll have to do it manually
[13:35:08] <Reedy>	 If the user doesn't have the right/group, mark the special page as disabled
[13:35:21] <Reedy>	 Noting you'll need to do something similar for the API too
[13:39:32] <Forza>	 Ah. Thanks 
[13:39:51] <Forza>	 Not that it hides users, but makes it less obvious at least 
[14:07:01] <Forza>	 https://m.mediawiki.org/wiki/Extension:Lockdown#Hiding_pages this might be a better way 
[14:08:23] <p858snake>	 The user list is used in a lot of places, security though obscurity by hiding one or two special pages, is not security
[14:22:14] <Forza>	 I agree fully 
[14:23:43] <Forza>	 What I want most is to avoid storing and showing full ips, but rather prefer to hide last octet or /64
[14:28:10] <Reedy>	 Tim is working on this stuff
[14:36:14] <Forza>	 :) 
[14:36:39] * Forza wish spam and spammers didn't exist 
[15:41:27] <Forza>	 I'd like to mention that I upgraded to PHP 8.1 a little while ago and have had no issues. I don't use many extensions or complicated configs though. 
[15:44:03] <Reedy>	 Most of the issues are deprecated logspam
[15:44:08] <Reedy>	 Stuff that will break "in future"
[15:45:34] <Forza>	 Ah so if I  later upgrade mw it might brake? 
[15:45:44] <Forza>	 Or another version of php? 
[15:46:45] <Reedy>	 another version of PHP
[15:46:53] <Reedy>	 I dunno if a later 8.x or 9
[15:48:26] <Forza>	 I had only one, which is fixed. So at the moment no logspam :) 
[15:48:35] <Forza>	 It was "PHP Deprecated:  Use of User::isLoggedIn was deprecated in MediaWiki 1.36."