On Thu, Nov 29, 2012 at 3:29 PM, Rob Weir <robw...@apache.org> wrote: > On Thu, Nov 29, 2012 at 9:17 AM, janI <j...@apache.org> wrote: >> Yes I locked it hard down, on request from the community....I had to use >> the big knife to be fast. >> >> I am looking into how to open for sysop, but my concern is that at least 2 >> spam accounts (Or more correctly 2 that fit the pattern) have got changed >> rights and I cannot see to what...so either a sysop have done it, or they >> have somehow aquired sysop priviledges. >> > > Third option: users with legacy sysop privileges had their accounts > hacked due to weak passwords or something.
While possible, admin-level changes leaves traces in the logs. You are able to see who gave who admin rights and when. If the two accounts in question have elevated rights at the regular user account side, you can see this in http://wiki.openoffice.org/wiki/Special:ListUsers (select Administrators). I recognize all names there - there are no mystery users. You can see who has done what related to user rights here: http://wiki.openoffice.org/wiki/Special:Log/rights Removing single log entries is possible, but not from within the browser - you need root level access to the database. Clayton
