Wikipedia:Bureaucrats' noticeboard

I note that, about a week ago, bureaucrat Maxim (talk · contribs) de-sysopped Fred Bauder citing WP:IAR. Relevant comments:

• Maxim's comment on Fred Bauder's talk page
• Arbitration page

Discussion has been fragmented, making it difficult to follow. The situation as a whole raises questions of the proper boundaries between bureaucrats, the arbitration committee, stewards, the community as a whole, and to a lesser extent the election coordinators and election commission since the initial dispute took place on a page related to the elections.

I believe it is important that exceptional actions such as this be noted here so that all bureaucrats are aware of them. I also believe that further discussion with the wider community would be valuable and would hope that Maxim will participate. If this page is not the most suitable venue for that discussion, perhaps links to more suitable pages could be provided.

The Uninvited Co., Inc. 21:31, 16 November 2018 (UTC)Reply

It is my view that, to a far greater extent than other activities at Wikipedia, the role of bureaucrats is narrowly defined. As the name "bureaucrats" implies, we are expected to follow process, and implement the wishes of the community. The original "bureaucrat" permission gave only the ability to set the admin bit, not the ability to remove it. The ability to remove the bit came much later, and was intended to allow the English Wikipedia community to be self-sufficient in handling de-sysoppings for inactivity and when part of an arbitration proceeding. Original policy discussions took place at this RFC in 2011. Notably, the provision to allow de-adminship when an admin is behaving disruptively was closed as WP:SNOW after 15-1 opposition. The provision allowing bureaucrats to de-sysop only those accounts where there is evidence that the account has been compromised barely passed, and has not since been amended. The intent at the time was to reserve these exceptional emergency cases to the stewards.

There is further discussion at Wikipedia talk:Bureaucrats/Archive 4#Emergency desysopping (v3) where several participants specifically mention that they could support bureaucrats invoking WP:IAR to de-sysop an admin under certain circumstances. The discussion did not have wide participation, however, and did not lead to any sort of consensus.

I would also like to observe that I have reviewed Wikipedia:Former administrators/reason/for cause and do not believe that there has been any previous example of a bureaucrat de-sysopping anyone for cause in the absence of clear instructions from the Arbitration Committee. The most recent similar situations were in 2006-2008 and were performed by Jimbo Wales (talk · contribs), and were controversial. I may have missed some cases since those that were ultimately resolved with the affected individual being re-sysopped are not indexed anywhere and are therefore difficult to find. The Uninvited Co., Inc. 22:32, 16 November 2018 (UTC)Reply

There is an arbitration case on the matter: Wikipedia:Arbitration/Requests/Case/Fred Bauder. Maxim_(talk) 22:35, 16 November 2018 (UTC)Reply

I believe I included a link to the case at the top of the section. Do you believe that discussion should take place on the case pages? The Uninvited Co., Inc. 22:36, 16 November 2018 (UTC)Reply

Here is good. Apparently I suck at reading today. :p Maxim_(talk) 22:40, 16 November 2018 (UTC)Reply

That's OK, my writing skills have been iffy all week. The Uninvited Co., Inc. 22:46, 16 November 2018 (UTC)Reply

I've been assuming that the case would discuss the role of bureaucrats and have been reserving my (non-privileged, ordinary editor) analysis for its workshop. However if the bureaucrats would like to have the discussion here, then that's fine, too. Thanks for your historical info. isaacl (talk) 00:01, 17 November 2018 (UTC)Reply

• I think the way Maxim handled it, immediately and publicly posting their reasoning to the arbitration committee, was sufficient to make the IAR perfectly permissible, even for a crat. Beeblebrox (talk) 23:00, 16 November 2018 (UTC)Reply

• Given that the so-called 'emergency' (whether or not it was an emergency- it had been 3 hours since the reblock and Fred has not unblocked himself again?) has subsided, shouldn't the permissions be restored to ultimately be decided on by the committee? Barring an injunction, temporary desysop motion, or similar... –xeno^talk 23:13, 16 November 2018 (UTC)Reply

  There is an arbcom motion in effect. -- KTC (talk) 23:25, 16 November 2018 (UTC)Reply

  Thank you. –xeno^talk 23:28, 16 November 2018 (UTC)Reply

• While a desysopping in this situation is, in itself, not unreasonable or unprecedented, it should not be overlooked that crats quite simply do not have the authority to perform discretionary desysoppings, even in emergency situations. If there is a pressing reason to do so, meaning something so serious and urgent that it cannot wait for either Arbcom or a Steward to act, then sure, an IAR desysopping would be reasonable for the protection of the project. However, that's not what happened. Self-unblocking is an abuse of the tools, repeatedly doing so is an additional offense, and yes, these acts make one subject to desysopping. But, contrary to what a lot of people seem to think, it's not a bright line for desysopping, and while Fred was rightfully desysopped, nothing fundamentally gives crats the right to make that sort of judgment call, even though they have the technical ability. Yes, IAR is a thing, but I don't think it is all that reasonable to invoke IAR in order to usurp the authority to desysop, especially in a non-emergency situation where there is no risk of harm to the project. Tool misuse is scandalous, and tempers on all sides were already heated. An IAR desysop was an overreaction, and an understandable one that we can certainly let slide, but it was unnecessary, and while I have great respect for and confidence in our crats, including Maxim, and we should not let crats get into the habit of invoking IAR to perform discretionary desysops.  Swarm  talk  03:43, 17 November 2018 (UTC)Reply
• WP:VPPOL might be a better place to ask questions like, "Should bureaucrats be allowed to perform desysopings without direction from Arbcom?", and "If so, when?". WP:BN is a little backwater. --Izno (talk) 04:04, 17 November 2018 (UTC)Reply
• I've said my 2c on the case page already, but wanted to add support to what Swarm said. I think it would be appropriate for a bureaucrat to do an emergency desysop IAR-style if the situation was ongoing, but once the threat of tool misuse (and particularly tool misuse that would harm the project) has passed, it should only be up to ArbCom to take action. I think it got struck in my comment on the case page, but I'll also reiterate that my concerns are not with Maxim or his actions, but rather what should be done in future cases. -- Ajraddatz (talk) 19:09, 17 November 2018 (UTC)Reply
• Perhaps the title, 'Bureaucrat', rather covers the issue, well; but maybe put this off until after the Arbitration Case. -- Alanscottwalker (talk) 20:22, 17 November 2018 (UTC)Reply
• I support Maxim's actions here. GAB^gab 20:32, 17 November 2018 (UTC)Reply
• For the record, I too support Maxim's action. The situation had been pulling in more and more different administrators, and it was clear that Fred Bauder was not interested in discussing things since he was simply unblocking himself within minutes. Maxim's action stabilized things and reduced disruption to the project. I wouldn't want to see bureaucrats routinely taking it upon themselves to de-sysop administrators that they deemed unruly, but this was an unusual situation. So in this particular case, I believe that Maxim showed good judgment. --Elonka 08:07, 18 November 2018 (UTC)Reply
• I only recently became aware of this cluster bleep, but after looking into it a bit I will add my endorsement (fwiw) to Maxim's IAR intervention. Swarm's analysis is solid, but this was a highly unusual circumstance. This kind of IAR action can be tolerated because it was immediately subject to review and could easily and quickly have been overturned. IAR is always going to be a judgement call, and I tend to take a very conservative view of it. (Invoking IAR should be safe legal and rare.) In this case I think the call was a reasonable one. -Ad Orientem (talk) 21:32, 19 November 2018 (UTC)Reply
• If we want to emphasize that having the admin bit is not a big deal, then having it temporarily removed should similarly not be a big deal. I am in favour of bureaucrats having some leeway to make judgement calls about temporarily desysopping particularly to stop flagrant misuse and wheel-warring in the cold light of day. If it's found that concerns were unfounded, they can just re-sysop the account in question, no harm done. I think in this case the concern was Fred would continue to wheel war (we will never, of course, know if he would have done or not, there's little to be gained from speculating on this), and so I'll just add my little, near-meaningless endorsement of Maxim's actions here. Fish+Karate 09:51, 20 November 2018 (UTC)Reply

  The psychosocial effects, for better or for worse, endure long after the bit is returned. In a project whose foundation is voluntary collaboration, that's a big deal. See FairProcess The Uninvited Co., Inc. 13:10, 20 November 2018 (UTC)Reply

  If admin is no big deal, than surely it would not have mattered that Fred remains an unblocked admin for a day or two. Alanscottwalker (talk) 02:29, 23 November 2018 (UTC)Reply

  It would not, if it were not for the wheel-warring, which is a Bad Thing. Fish+Karate 15:36, 23 November 2018 (UTC)Reply

  Not actually -- that's just the rule, so rules following somehow really, really matters for some people, but not at all for others. -- Alanscottwalker (talk) 18:58, 23 November 2018 (UTC)Reply

BN is not the best venue, but since we are directly talking about issues realted to the (unblockself) permission - throwing out a feeler: What if we just removed this access from administrators (and perhaps adding it to bureaucrats to deal with issues of rogue admins)? — xaosflux ^Talk 21:40, 17 November 2018 (UTC)Reply

The number of admins who accidentally block themselves or test blocks on themselves, and have to unblock themselves, far exceeds the number of rogue unblocks. Stephen 21:43, 17 November 2018 (UTC)Reply

I would agree. I think the current situation is fine—if you screw up and block yourself or you're doing tests, sure, go ahead and unblock yourself. If someone else blocks you, then even if you think they're way out of line, you appeal the block, you don't just reverse it. Also, I recall some admins who did unblock themselves during the Robdurbar incident because the account was so clearly compromised; they weren't penalized in any way but were instrumental in keeping the problem in check. Seraphimblade ^{Talk to me} 21:58, 17 November 2018 (UTC)Reply

Agreed. The tool should stay as is, admins who misuse it can be dealt with by arbcom, as is happening in this case. Beeblebrox (talk) 21:59, 17 November 2018 (UTC)Reply

• Adding a post-close idle thought, Stephen's point made me wonder if there would be a way in pemrs to undo your own selfblock but not other's blocks of you. Ben · Salvidrim! ✉ 00:37, 18 November 2018 (UTC)Reply

The discussion above is closed. Please do not modify it. Subsequent comments should be made on the appropriate discussion page. No further edits should be made to this discussion.

• Esanchez7587 (t · th · c · del · del · cross-wiki · SUL · edit counter · pages created (xtools · sigma) · non-automated edits · BLP edits · undos · manual reverts · rollbacks · logs ^{(blocks · rights · moves)} · rfar · spi · cci) (assign permissions)^{(acc · ap · ev · fm · mms · npr · pm · pc · rb · te)}

Please de-sysop, account has been compromised. Home Lander (talk) 17:13, 22 November 2018 (UTC)Reply

Thank you, Home Lander. –xeno^talk 17:35, 22 November 2018 (UTC)Reply

• Esanchez7587 (talk · contribs · blocks · protections · deletions · page moves · rights · RfA)

Compromised admin account, has been globally locked. Please remove sysop bit or engage WP:LEVEL1 or whatever we think is appropriate now. Ivanvector (^Talk/_Edits) 17:14, 22 November 2018 (UTC)Reply

Thanks for this Ivanvector. I'll alert the committee Worm^TT(talk) 17:17, 22 November 2018 (UTC)Reply

Hello enwiki cratz.

I've just globally locked Esanchez7587, as he was clearly going rogue after few years of inactivity, which smelled like a compromised admin account.

This is just a notification, and no desysop was performed on my level: whether or not to desysop is your call. (Since they're locked, they cannot perform any actions. Hence no desysop from me.)

Goodnight, — regards, Revi 17:15, 22 November 2018 (UTC)Reply

• Just noting that I’ve notified ArbCom. TonyBallioni (talk) 17:18, 22 November 2018 (UTC)Reply

  And noting that we're aware Worm^TT(talk) 17:27, 22 November 2018 (UTC)Reply

  @Worm That Turned: Do y'all want us to go ahead and desysop or is the global lock sufficient for now? 28bytes (talk) 17:32, 22 November 2018 (UTC)Reply

  The account cannot do anything with the global lock in place, so we can wait for the procedures. –xeno^talk 17:35, 22 November 2018 (UTC)Reply

  Global lock is sufficient at the moment as he cannot do anything more - just waiting on other arbs to reply regarding anything else. Worm^TT(talk) 17:36, 22 November 2018 (UTC)Reply

  Sounds good; just wanted to confirm. Thanks both. 28bytes (talk) 17:43, 22 November 2018 (UTC)Reply

• There is also an ANI thread. --Izno (talk) 17:41, 22 November 2018 (UTC)Reply

Can a globally locked account still see deleted revisions on projects where it has admin access? WJBscribe (talk) 14:22, 23 November 2018 (UTC)Reply

Accounts that are globally locked are prevented from even logging in, so they can not access anything. See meta:Global locks for more information. --AntiCompositeNumber (talk) 14:41, 23 November 2018 (UTC)Reply

AntiCompositeNumber is correct. Since they cannot log in (either using Web or via API) nothing can be done with the account. That's why I just locked the account, not desysop'ing. — regards, Revi 14:46, 23 November 2018 (UTC)Reply

Thank you. I agree that in that case, desysopping is not urgently required. WJBscribe (talk) 17:07, 23 November 2018 (UTC)Reply

Under WP:LEVEL1 procedures, the committee has agreed that Esanchez7587 should be desysopped as possibly compromised. Please can a 'crat (that is not me) do the necessary. Worm^TT(talk) 17:44, 22 November 2018 (UTC)Reply

  Done. 28bytes (talk) 17:46, 22 November 2018 (UTC)Reply

There is currently an RfC at Wikipedia:Village_pump_(policy)#Proposal_to_tighten_administrator_inactivity_procedure discussing potential changes to the policy on administrator inactivity. I am posting a notice here as it would affect bureaucrats and people watching this board likely would be interested. All are invited to participate in the discussion. TonyBallioni (talk) 04:25, 23 November 2018 (UTC)Reply

• Garzo (t · th · c · del · del · cross-wiki · SUL · edit counter · pages created (xtools · sigma) · non-automated edits · BLP edits · undos · manual reverts · rollbacks · logs ^{(blocks · rights · moves)} · rfar · spi · cci) (assign permissions)^{(acc · ap · ev · fm · mms · npr · pm · pc · rb · te)}

I just locked Garzo after the account vandalized the main page. Likely compromised as well, noting here for information. -- Ajraddatz (talk) 19:41, 23 November 2018 (UTC)Reply

Arbcom aware. Worm^TT(talk) 19:53, 23 November 2018 (UTC)Reply

Please can a bureaucrat desysop under level 1 procedures. I'll post the rest in a moment Worm^TT(talk) 19:57, 23 November 2018 (UTC)Reply

  Done per WP:LEVEL1atSpecial:PermaLink/870290300#Level_1_desysop_of_Garzo). — xaosflux ^Talk 20:09, 23 November 2018 (UTC)Reply

Hello bureaucrats, just noting that Ajraddatz has locked meta:Special:CentralAuth/Garzo as a compromised account. I have run a check locally, and it does appear to be compromised (different continents). I have notified ArbCom, but also posting here. As it is locked, it can't edit currently. TonyBallioni (talk) 19:56, 23 November 2018 (UTC)Reply

Thank you, will wait for an ArbCom LEVEL1 request. — xaosflux ^Talk 20:05, 23 November 2018 (UTC)Reply

The request is already above.--Ymblanter (talk) 20:06, 23 November 2018 (UTC)Reply

Under the Level 1 desysopping procedures the administrator permissions of Garzo (talk · contribs · blocks · protections · deletions · page moves · rights · RfA) have been temporarily removed as a suspected compromised account.

Supporting: Worm That Turned, Euryalus, Opabinia regalis, DeltaQuad, Mkdw, and KrakatoaKatie.

For the Arbitration Committee;

Worm^TT(talk) 20:06, 23 November 2018 (UTC)Reply

Discuss this at: Wikipedia talk:Arbitration Committee/Noticeboard#Level 1 desysop of Garzo

• Killiondude (t · th · c · del · del · cross-wiki · SUL · edit counter · pages created (xtools · sigma) · non-automated edits · BLP edits · undos · manual reverts · rollbacks · logs ^{(blocks · rights · moves)} · rfar · spi · cci) (assign permissions)^{(acc · ap · ev · fm · mms · npr · pm · pc · rb · te)}

Under the Level 1 desysopping procedures the administrator permissions of Killiondude (talk · contribs · blocks · protections · deletions · page moves · rights · RfA) have been temporarily removed as a suspected compromised account.

Supporting: DeltaQuad, Worm that Turned, BU Rob13.

For the Arbitration Committee;

-- Amanda (aka DQ) 20:33, 24 November 2018 (UTC)Reply

Discuss this at: Wikipedia talk:Arbitration Committee/Noticeboard#Level 1 desysop of Killiondude

Per this motion, could I get a desysop please? -- Amanda (aka DQ) 20:35, 24 November 2018 (UTC)Reply

  Doing... — xaosflux ^Talk 21:44, 24 November 2018 (UTC)Reply

  Done @DeltaQuad: thank you for the notice. — xaosflux ^Talk 21:46, 24 November 2018 (UTC)Reply

My apologies for intervention, but I think a notification at the user talk page is required. Thanks.--Ymblanter (talk) 22:03, 24 November 2018 (UTC)Reply

@Ymblanter: agree, as this was an ArbCom ruling I'm expecting that they will do this (as they will need to approve restoration, WMF T&S will unlock when they verify the right person is in control, but it is up to arbcom to determine if Wikipedia:Administrators#Security has been satisfied here for restoration.), @DeltaQuad: perhaps? — xaosflux ^Talk 22:07, 24 November 2018 (UTC)Reply

Account unlocked by Ajraddatz - TNT ^💖 22:08, 24 November 2018 (UTC)Reply

Notified Killiondude of this discussion and refereed them to ArbCom to discuss access restoration. — xaosflux ^Talk 22:13, 24 November 2018 (UTC)Reply

And ArbCom has motioned to return the tools here. Apologizes for the lack of notification to @Killiondude: beforehand. -- Amanda (aka DQ) 22:56, 24 November 2018 (UTC)Reply

And my apologies for not checking here after seeing them unblock themselves and reblocking. Got a little worried there. --TheSandDoctor ^Talk 22:58, 24 November 2018 (UTC)Reply

  Done Access restored per Arbcom request at Special:PermaLink/870454925#Return_of_tools. — xaosflux ^Talk 23:10, 24 November 2018 (UTC)Reply

Just curious why was this restored without waiting for 24 hours as usual.Pharaoh of the Wizards (talk) 23:19, 24 November 2018 (UTC)Reply

Hello @Pharaoh of the Wizards: the standard 24-hour hold specified in the administrator policy is only applicable to the condition in that policy. This restoration was per motion of the arbitration committee (per Wikipedia:Arbitration_Committee/Procedures#Level_I_procedures) and did not require a delay. — xaosflux ^Talk 23:39, 24 November 2018 (UTC)Reply

The discussion above is closed. Please do not modify it. Subsequent comments should be made on the appropriate discussion page. No further edits should be made to this discussion.

• Randykitty (t · th · c · del · del · cross-wiki · SUL · edit counter · pages created (xtools · sigma) · non-automated edits · BLP edits · undos · manual reverts · rollbacks · logs ^{(blocks · rights · moves)} · rfar · spi · cci) (assign permissions)^{(acc · ap · ev · fm · mms · npr · pm · pc · rb · te)}

I am nearing the end of my 3-month self-imposed wikibreak and hereby request to have my bit restored. I still have a week to go, so there's no urgency. Thanks! --Randykitty (talk) 18:22, 25 November 2018 (UTC)Reply

Welcome back. Standard 24-hour hold; no concerns. 28bytes (talk) 18:39, 25 November 2018 (UTC)Reply

  Done Welcome Back. — xaosflux ^Talk 18:55, 26 November 2018 (UTC)Reply

• Thanks! --Randykitty (talk) 22:24, 27 November 2018 (UTC)Reply

Huz... --Floquenbeam (talk) 23:45, 27 November 2018 (UTC)Reply

• Spartaz (t · th · c · del · del · cross-wiki · SUL · edit counter · pages created (xtools · sigma) · non-automated edits · BLP edits · undos · manual reverts · rollbacks · logs ^{(blocks · rights · moves)} · rfar · spi · cci) (assign permissions)^{(acc · ap · ev · fm · mms · npr · pm · pc · rb · te)}

Since we dropped our bits at the same time for the same reason and have been inactive the same period, symmetry demands I also request my bit back at the sams time. Thanks Spartaz ^Humbug! 21:07, 26 November 2018 (UTC)Reply

As above: Welcome back. Standard 24-hour hold; no concerns. 28bytes (talk) 21:14, 26 November 2018 (UTC)Reply

  Done - welcome back! WJBscribe (talk) 21:12, 27 November 2018 (UTC)Reply

@Spartaz: Good man. We always need more ^Humbug  ;) ——SerialNumber54129 21:18, 27 November 2018 (UTC)Reply

Thank you. Spartaz ^Humbug! 21:31, 27 November 2018 (UTC)Reply

...zah! --Floquenbeam (talk) 23:45, 27 November 2018 (UTC)Reply

I noticed that 2FA has been recently pushed through for WP:INTADMIN as an office action. Are Bureaucrat accounts currently required to have 2FA? If not this creates a security hole. Crazynas ^t 19:31, 26 November 2018 (UTC)Reply

No such requirement to my knowledge. 28bytes (talk) 19:36, 26 November 2018 (UTC)Reply

Not 'yet' at least, WMF is still working on their requirements, along with the mechanics for it. These topics are being currently reviewed by WMF Trust and Safety team along with the development Security group. — xaosflux ^Talk 20:10, 26 November 2018 (UTC)Reply

No, there is currently no requirement for bureaucrats to have 2FA implemented and as a condition for holding the user rights. ~Oshwah~^{(talk) (contribs)} 23:42, 27 November 2018 (UTC)Reply

The only security requirements for advanced permission holders are outlined at WP:STRONGPASS. Beeblebrox (talk) 00:29, 28 November 2018 (UTC)Reply