Tomasz Finc wrote:
One of the things that was mentioned to us as we were
working on the project
was to not give fraudsters the exact recipe of how the system worked. Since we
knew that we'd be checking our code into the production svn depots we chose to
move the project page to somewhere that was not available to fraudsters. This
wasn't done to prevent anyone from participating as we posted on the blog in
order to keep everyone updated.
Who was advocating for security through obscurity?
I don't understand what "production svn depots" means. Does that mean the
code isn't going into the public SVN repo? I was under the impression that
all of the code was here:
http://svn.wikimedia.org/viewvc/mediawiki/trunk/extensions/DonationInterface
Is that right?
MZMcBride