On Thu, 2009-06-04 at 17:04 +0100, Andrew Garrett wrote:
When did we start treating our administrators as
potentially malicious
attackers? Any administrator could, in theory, add a cookie-stealing
script to my user JS, steal my account, and grant themselves any
rights they please.
We trust our administrators. If we don't, we should move the
editinterface right further up the chain.
They are potentially malicious attackers, but we nevertheless trust them
not to do bad things. "We" in this case refers only to most of
Wikimedia, I guess, since there has been no shortage of paranoia both on
bugzilla and this list recently - a sad state of affairs to be sure.
-Mike