Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Delete fake users and check security #90

Open
matamadio opened this issue Apr 21, 2020 · 0 comments
Open

Delete fake users and check security #90

matamadio opened this issue Apr 21, 2020 · 0 comments

Comments

@matamadio
Copy link

matamadio commented Apr 21, 2020
edited
Loading

Currently, the geonode has some 28000 users, about 27700 of which are registered by bots with fake email.
This creates issues in the admin interface, e.g. every time there is a "users" dropdown list, it parse all the 29k records and the browser crashes.
Also, the geonode goes 502 for a while.

We need to keep only the urser that satisfy one of these conditions:

  1. staff users
  2. non-empty "name" and "surname" fields
  3. email "worldbank.org"

The django admin interface allows to delete about 20 users per time (edit: it doesnt matter the number, but there are some users that it fails to delete, aborting the operation, example), which is not optimal for this task. Is there a better way to remove those users from db?
Can we put implement anti-spam to block further fakes? if not already in the 2.10 update.
@matamadio matamadio changed the title Delete spam users and avoid new Delete fake users and check security Apr 21, 2020
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
1 participant
@matamadio