Board Thread:General Discussion/@comment--20150810171627/@comment-26009167-20150810200916

SlyCooperFan1 wrote:

Deadcoder wrote:

Disabling Javascript isn't the answer. The problem isn't enabling Javascript. The problem is that Wikia's security policies are horribly negligent. Wikia uses insecure transmission for a bunch of different things. Wikia's policy on the Dev wiki was to not protect any scripts, ignoring the security issues; when the policy should have always been to require the code-editor permission to edit any scripts. Logging in should be restricted to a single page. Scripts should be auto-audited before being put into effect.

The issue here is that Wikia was negligent about security, and now we're paying the price. Given the fact that Wikia doesn't want to enable 2FA, we might be paying this price for a long time to come. Plus how DaNASCAT seems to think we're going to require everyone to have 2FA - I'm pretty sure at least half of us here understand that not everyone is even able to do 2FA. C'mon Staff, if you're going to deny something because "oh gawd we won't get advertising or more users" then I don't understand why you even bother listening to us in the first place. We're not complete idiots, and it shouldn't take us saying this to make you understand that.