Home / Blogs

The Problem With Wikis

Don't miss a thing – sign up for CircleID Weekly Wrap newsletter delivered to your inbox once a week.
Ram Mohan

Wikis have been around for a long time on the Web. It's taken a while for them to transform from geek tool to a mainstream word, but we're here now.

Last week at the ICANN Meeting in Vancouver, it was fun to watch hundreds of people get introduced to Wikis and start using them, thanks to Ray King's ICANN Wiki project.

In the past few days since, I've come to believe that Wikis are doomed unless they start thinking about security in a more serious way.

Someone is attempting to deface the ICANN Wiki main page, and the Sysop has a full-time job on their hands!

Last week, John Seigenthaler, assistant to Attorney General Robert Kennedy in the early 1960's, wrote an article in USA Today about how for 132 days, he was a victim to Internet character assasination - courtesy Wikipedia.

Wikipedia has since changed its rules and now requires registration prior to any postings. ICANN Wiki needs to follow, as do any serious Wikis that want users to treat their content as reliable.

Registration alone as a preventative measure is unlikely to solve the underlying problem — what to do when collective knowledge pooling is poisoned by bad actors? Wikis allow posting spurious, damaging or bad content about someone else so much easier than literally any other method. And if companies and individuals don't pay close notice, their reputation can be smothered, or worse.

Is it time for paid Wiki Marshalls who will keep the peace? 

By Ram Mohan, Executive Vice President & CTO, Afilias. Mr. Mohan brings over 20 years of technology leadership experience to Afilias and the industry.

Related topics: DNS, ICANN, Security



Re: The Problem With Wikis Michele Neylon  –  Dec 06, 2005 1:20 PM PDT

Although I find that wikis can be extremely useful they seem to have been adopted by a lot of organisations without any real thought of the implications. If email spam and blog comment spam wasn't bad enough, having to contend with junk on wikis could become a full-time job for any wiki maintainers. I doubt if anyone will pay to have it done though :)

Re: The Problem With Wikis Raymond King  –  Dec 06, 2005 2:12 PM PDT

Yes, wiki spam is definitely a problem and ICANNWIKI currently gets spammed about 4 times per day.  If this grows, we will have to change our rules.  That pains me, however, because the beauty of the current system is that it allows such easy editing, with or without logging in.  Right now, it is more important to lower the barrier for legitimate users, especially those just learning how to use the system, than to raise the barrier to a few bad actors.

The spam we get today is all from people outside the industry putting up tons of links for drugs and the like.  In fact, they put the links up in an invisible way, hoping that we won't notice and the presence of these links will improve their own search engine rankings.

I am happy to report that there have not been cases of people in the ICANN community "spamming" the site with offensive material or blatent advertisements.  Of course there will always be differences of opinion, but the wiki environment naturally tends towards a neutral point of view so over time the wiki may be the best place to look for material presented in a neutral point of view (NPOV).

I think the paid marshall notion is premature.  At this point it is easy enough to keep ICANNWIKI clean of spam and growing in a constructive manner, but if that changes, then my plan would be to ask for volunteers to oversee various areas.

Re: The Problem With Wikis Jothan Frakes  –  Dec 07, 2005 4:32 PM PDT

I will be guest speaker on the Domain Masters webcast on Webmaster Radio today at (7pm E / 4pm P), and I will be mentioning the ICANNWiki and the participation at the ICANN Conference.

Re: The Problem With Wikis Ram Mohan  –  Dec 13, 2005 2:30 PM PDT

Author apologizes for fake Wikipedia Biography - USA Today

"I'm glad this aspect of it is over," Seigenthaler, 78, said. But he expressed concern that "every biography on Wikipedia is going to be hit by this stuff - think what they'd do to
Tom DeLay and Hillary Clinton, to mention two. My fear is that we're going to get government regulation of the Internet as a result."

Wikis have to start implementing better security practices ... perhaps implement something similar to collaborative approval of edits ... Mike Nelson of ISOC introduced me to swarmsketch.com - an innovative way to do collaborative editing.

Re: The Problem With Wikis Rebecca Smith  –  Dec 15, 2005 5:49 AM PDT

Security for public wikis is certainly a growing issue, but for most corporate and group applications, there is no reason to make a wiki open to the greater public.  I work with two separate organizations that maintain private wikis as a workspace where individuals can post material, mark up existing material, and agree on final versions, among many other apps, and I wonder if we'll see more use of wikis as intra-organization tools.

And in other news, having engaged in the debate many times myself as to the veracity of data in public wikis, Nature Magazine just posted an article citing that wikipedia's public science entries were just about as accurate as Britannica.  Viva wikipedia!

Re: The Problem With Wikis Ram Mohan  –  Dec 15, 2005 6:02 AM PDT

True — Wikis are great in internal debates/discussions, my security concerns are for public wikis which can be spammed without any restrictions.

Re: The Problem With Wikis Raymond King  –  Dec 15, 2005 10:52 AM PDT

I must report that ICANN WIKI got a serious bout of spam in the past week.  It is almost all from the same source and is of the form of URL spam, it is plain to see in the recent changes view.  As a result, we've:

1) Made login required
2) Stopped accepting saves with

tags, which is what is often used to "hide" the spam entry
3) Started using common blacklists to prevent posts from certain IPs.  On this one, we may need to upgrade hardware to prevent degradation of performance.

I'm most bummed about the first one, because I think it raises the bar for participation and participation is the key to a public wiki's success.  I am hoping that some of the other measures we're taking may allow that bar to be lowered again in the future.

Re: The Problem With Wikis Jaeyoun Kim  –  Dec 19, 2005 6:38 AM PDT

I also think that the paid marshall notion is premature. I have been using wiki for my various internal and public projects. Although we have experienced many problems of wiki, I just want to say that we cannot succeed if we are afraid of failure. If you do not make mistakes you do not make anything.
Anyway, I would like to say thanks to Raymond King and other people involved in ICANN wiki. ICANN wiki has been providing a good place to get to know each other among ICANN participants and should continue to play such a role.

Re: The Problem With Wikis Raymond King  –  Dec 19, 2005 10:50 AM PDT

I like your comment "If we do not make mistakes, we do not make anything"!  In that spirit, we just re-instated anonymous edits because some of the other things we've done seem to have helped curb spam enough.  Let's hope it holds.

Re: The Problem With Wikis Suresh Ramasubramanian  –  Dec 20, 2005 6:39 PM PDT

paid?  probably the best way to go is to find volunteer wiki admins who can be trusted to have a free, fair attitude plus operate with a light hand.

it'd build a sense of community there, something that ICANN would definitely need.

Re: The Problem With Wikis Ram Mohan  –  Dec 21, 2005 6:43 AM PDT

Interesting ... the Wiki debate is almost similar to the question of "who shall tend to the public garden".  Everyone agrees that it's in the public good, but when vandals deface it, people stop visiting.

When Wiki admins create mechanisms to ensure tighter security of posts and better deterrents against spam, they need to publish that in a proper way so that other Wikis can start adopting these procedures.  Is there a global Wiki Admin Society to share best practices?

Re: The Problem With Wikis Matthew Elvey  –  Jan 04, 2006 1:48 PM PDT

IMO, most of the reasonable schemes for fighting email spam are equally applicable to fighting wikispam:

- DNSBLs, e.g. URIBLs
- Content-based filtering
- Statistical filtering
- Authentication and Reputation (A&R)
- Cost-Based systems, e.g. bonds
- Heuristic filtering, e.g. SpamAssassin

-from http://en.wikipedia.org/wiki/Stopping_e-mail_abuse

My favorite is A&R - The Reputation system can be designed to work with an Authentication system to protect any Internet media from spam.

If you look up something in wikipedia, you'll find that high quality articles are the norm, even when it comes to articles on, say, the Middle East.

To post comments, please login or create an account.

Related Blogs

Related News

Explore Topics

Sponsored Topics

Promoted Posts

Now Is the Time for .eco

.eco launches globally at 16:00 UTC on April 25, 2017, when domains will be available on a first-come, first-serve basis. .eco is for businesses, non-profits and people committed to positive change for the planet. See list of registrars offering .eco more»

Boston Ivy Gets Competitive With Its TLDs, Offers Registrars New Wholesale Pricing

With a mission to make its top-level domains available to the broadest market possible, Boston Ivy has permanently reduced its registration, renewal and transfer prices for .Broker, .Forex, .Markets and .Trading. more»

Industry Updates – Sponsored Posts

Leading Internet Associations Strengthen Cooperation

Global Domain Name Registrations Reach 329.3 Million, 2.3 Million Growth in Last Quarter of 2016

Verisign Releases Q4 2016 DDoS Trends Report: 167% Increase in Average Peak Attack from 2015 to 2016

Neustar to be Acquired by Private Investment Group Led by Golden Gate Capital

Verisign Q3 2016 DDoS Trends Report: User Datagram Protocol (UDP) Flood Attacks Continue to Dominate

2016 U.S. Election: An Internet Forecast

Government Guidance for Email Authentication Has Arrived in USA and UK

Afilias Chairman Jonathan Robinson Wins ICANN's 2016 Leadership Award at ICANN 57

ValiMail Raises $12M for Its Email Authentication Service

MarkMonitor Supports Brand Holders' Efforts Regarding .Feedback Registry

Don't Gamble With Your DNS

Defending Against Layer 7 DDoS Attacks

Understanding the Risks of the Dark Web

New TLD? Make Sure It's Secure

Verisign Releases Q2 2016 DDoS Trends Report - Layer 7 DDoS Attacks a Growing Trend

How Savvy DDoS Attackers Are Using DNSSEC Against Us

Radix Adds Dyn as a DNS Service Provider

Facilitating a Trusted Web Space for Financial Service Professionals

MarkMonitor Partners with CYREN to Deepen Visibility into Global Phishing Attacks

Verisign Named to the Online Trust Alliance's 2016 Honor Roll