Community Wishlist Survey 2023/Admins and patrollers/Enable removing block log entries entirely, not just redacting

Discussion

• @WikiFer: It is already possible to hide the block log entries, just as with any log entry or revision. If you want it hidden from other admins, too, suppression can be used. Is that not satisfactory? MusikAnimal (WMF) (talk) 02:19, 6 February 2023 (UTC)[reply]

  @MusikAnimal (WMF) Help:RevisionDelete only hides information in the text, summary of edits and account name or IP. The lockout log is not deleted if there is an administrator error in applying the lockout. WikiFer ^msg 04:11, 6 February 2023 (UTC)[reply]

  @WikiFer Using my sysop account, if I go to Special:Log/block, I see checkboxes next to each log entry and a "Change visibility of selected log entries" button. Is this not doing what you want? Apologies if I'm still missing something! I know RevisionDelete is a bad name, because in this case it's not actually a revision that we're deleting. MusikAnimal (WMF) (talk) 04:18, 6 February 2023 (UTC)[reply]

  @MusikAnimal (WMF) You are right. Now I realized that this option really exists. I'm sysop on ptwiki, but I've never used the possibility of hiding a blocking log. WikiFer ^msg 04:46, 6 February 2023 (UTC)[reply]

Comment Although it is possible to hide the blocking log, the suppression policy of each local community may not allow this use to hide a blocking considered incorrect. That's why I created this proposal, so that there would be no link with the suppressors. WikiFer ^msg 04:56, 6 February 2023 (UTC)[reply]

@WikiFer If I'm understanding you correctly, are you proposing a mechanism by which the community could collectively remove the log entry without requiring an admin/suppressor to be the one to enact the consensus? Samwalton9 (WMF) (talk) 10:42, 6 February 2023 (UTC)[reply]

@Samwalton9 (WMF) The admin will still be responsible for clearing the lock log, but it wouldn't be considered a hide in the way suppressors use it. The consensus for applying this removal would be by consensus among local administrators. WikiFer ^msg 11:34, 6 February 2023 (UTC)[reply]

@WikiFer I'm not sure I understand your proposal and how it's different from what is currently possible - could you elaborate on what the difference is? Samwalton9 (WMF) (talk) 12:49, 6 February 2023 (UTC)[reply]

@Samwalton9 (WMF) See this example here, it has the block log where a user was unblocked because another administrator objected to the block. My proposal is to remove this block log of user, leaving the his account without any blocking records. If it was unlocked because the lock was incorrect, it shouldn't be part of this history. WikiFer ^msg 13:03, 6 February 2023 (UTC)[reply]

@WikiFer Here you can see a test I just did where I removed blocks from the logs for my test account. Are you suggesting that the software should enable you to remove those log entries entirely, rather than have "removed" text in the log? Samwalton9 (WMF) (talk) 13:35, 6 February 2023 (UTC)[reply]

@Samwalton9 (WMF) Exactly. The proposal is for the software to remove log entries of locks that the local community has deemed to be incorrect. In the example you showed, the lock configuration change is another log. The proposal is not to remove only text, but not to appear in the account history anymore. WikiFer ^msg 13:56, 6 February 2023 (UTC)[reply]

@Samwalton9 (WMF) Another better example was this administrative war of blocking and unblocking this account only on December 30, 2020 on Portuguese Wikipedia. My proposal is to leave this entire history blank, as if there were no blocks. WikiFer ^msg 14:00, 6 February 2023 (UTC)[reply]

@WikiFer Gotcha. I've updated the proposal title to clarify this. Samwalton9 (WMF) (talk) 14:50, 6 February 2023 (UTC)[reply]

@Samwalton9 (WMF) @WikiFer Note that if you use RevDel (aka redaction) on all fields, the entry is completely hidden from the log. Only users who have the ability to change the visibility of the log entry will be able to see it, and they will see it as "([field] removed)". In this case that is only admins, but you can use suppression to hide it from them, too. Are we sure that doesn't satisfy the wish?

I don't think full proper deletion from the database is something that would be considered. We could add yet another layer of visibility, as in something above suppression, but is there really any point in doing that? MusikAnimal (WMF) (talk) 16:49, 6 February 2023 (UTC)[reply]

@MusikAnimal (WMF) In this example, it would be unfair for a person to have a history of having their account blocked due to an administrative war. I think that in situations like this, deleting database locks would resolve unfairness. WikiFer ^msg 16:58, 6 February 2023 (UTC)[reply]

@WikiFer "Deleting" isn't really a thing. I see now above you said you wanted something that worked without the assistance of suppression, but I still have the same concerns. We need a log of everything that happens. Anything done by an admin should be auitable by another admin. If we want it hidden from admins, use suppression. In your example, if you use RevisionDelete, the log entries are only visible to 49 users (and those users will see it as "hidden" and have to click through to see what actually happened). To everyone else (non-admins), they won't see the log entries at all. If suppression is used, it brings down the visibility to just three users, who again will see them as "hidden" and have to click through if they want more information. MusikAnimal (WMF) (talk) 17:02, 6 February 2023 (UTC)[reply]

@MusikAnimal (WMF) Oh, huh. I swear I tested looking at the Samwalton9Testing block log from a non-admin account and could still see the deleted logs, but now I'm looking again I don't see them, so maybe it was an account cache issue. I agree that there's not much else to be done if that's the current behaviour. Samwalton9 (WMF) (talk) 17:29, 6 February 2023 (UTC)[reply]

I'd like to hear confirmation from @WikiFer first, but I'm thinking this proposal could be archived as there are existing solutions. I'm unclear on why we would need the ability for admins to completely hide block log entries from other admins. Those other admins will see "[field] removed", and if they use the "Change visibility" link or check the deletion log, they will see the rationale which for this use case would say something like "accidental block". That is by design. All actions in MediaWiki are intended to be audited. Imagine a rogue admin who remove visibility of the blocks they made, and also the log entries of them changing the visibility.

As I said suppression can be used to hide the entries from admins, too, but I don't see the point as admins can already confirm the blocks are invalid. MusikAnimal (WMF) (talk) 18:57, 6 February 2023 (UTC)[reply]

@MusikAnimal (WMF) As I already opened the proposal, the ideal thing is for the community to manifest itself in a vote, since the tool for hiding administrators is just another blocking log, a new administrative action that can only be used if the username is incorrect, or the edit summary violates the local hiding policy. I believe that wrongs blocks should be removed from an account's history, and admins will be able to set this by consensus on each project. WikiFer ^msg 19:16, 6 February 2023 (UTC)[reply]

My point is that what you're proposing is already possible. I don't think anything new needs to be engineered. But, the proposal is actually already approved, so as it stands now it's going to voting. MusikAnimal (WMF) (talk) 17:22, 7 February 2023 (UTC)[reply]

I come to this discussion from a situation where this was an issue. I opposed because I agree that, as framed, leaving it solely to administrative discretion is too open a door to abuse.

But ... certainly someone who gets mistakenly blocked for a few hours after, say, 15 years of productive, block-free editing might be entitled to ask for this sort of expungement, which could be granted through community consensus and only a limited number of users (i.e., the OS team, maybe) could actually do it.

Maybe we'll consider that proposal next year. Daniel Case (talk) 02:37, 12 February 2023 (UTC)[reply]

I am that soldier! (Hi Daniel!) Yes, I would like my 15-year clean block log record back, please! Note also the provisions of the EU's General Data Protection Regulations. Included in the seven principles of GDPR are two that are very relevant: a) the requirement for accuracy (and the consequent right to have incorrect information amended or deleted!); and b) the principle of accountability (which means that Data Controllers need to ensure that they not only comply with the principles, but also have appropriate processes and records in place to demonstrate compliance.) Other jurisdictions have similar laws in place. Now, it may well be the case that RevDel meets those criteria (as only other delegated Data Controllers can see the logs), but the proposal should not be dismmised out of hand. Bastun (talk) 11:09, 13 February 2023 (UTC)[reply]

Voting

•  Oppose. A later unblock should be sufficient. However, there should be possible to add a tag to the block log to mark the block as "done in error". --Ciencia Al Poder (talk) 18:29, 10 February 2023 (UTC)[reply]
•  Oppose. You can look this. In my opinion unblock is enough. This "feature" would encourage administrators to hide their own mistakes, which would be not good. Everything what admin does, including mistakes, must be public as much as possible. Taivo (talk) 20:02, 10 February 2023 (UTC)[reply]
•  Oppose this creates a system open to abuse. Especially on some wikis (such as kawiki), this feature could be abused just so admins can hide the fact that they've been misusing their tools to block good-faith users for some time. --SHB2000 (talk | contribs) 22:17, 10 February 2023 (UTC)[reply]
•  Oppose this can go entirely unchecked. I have been involved in assisting administrators on the English Wikipedia with continuing to report long-term abusers. Doing this will give the long-term abusers an upper-hand. - TheLionHasSeen (talk) 22:41, 10 February 2023 (UTC)[reply]
•  Oppose suppression should be enough here. Outright removal removes accountability. Dreamy Jazz ^{talk to me | enwiki} 02:37, 11 February 2023 (UTC)[reply]
•  Oppose The stated problem is a deliberate social construct of the community, not a technical issue in need of solving. * Pppery * _{it has begun} 03:35, 11 February 2023 (UTC)[reply]
•  Oppose Per above. Spencer (talk) 04:36, 11 February 2023 (UTC)[reply]
•  Oppose We are supposed to be held to a high standard. (That doesn't always happen). Admins even more so. You wouldn't want something covered up at work for example. So why is here any different? There needs to be accountability and transparency. What you have proposed would remove that and allow some admins to abuse it. Those that do abuse it shouldn't be an admin to be begin with. Good thing the proposer is not an admin (if they're not) because I could see them doing this. Mr. C.C.^{Hey yo!}_{I didn't do it!} 09:09, 11 February 2023 (UTC)[reply]

  @Fishhead2100 I'm an admin, but the proposal doesn't for me, but to users who are blocked unfairly and have their blocking record tarnished by the incompetence of wrong blocks by other administrators. WikiFer ^msg 14:51, 11 February 2023 (UTC)[reply]

•  Oppose This is unnecessary, the unblock log is the right place to point this out, if there has been a conflict or a debate between sysops, or mistake by the initial blocker, there is no good reason why this should not be visible in the log. CaféBuzz (talk) 09:51, 11 February 2023 (UTC)[reply]
•  Oppose SunDawn (talk) 12:37, 11 February 2023 (UTC)[reply]
•  Oppose don't hide errors, but maybe mark them Lupe (talk) 13:28, 11 February 2023 (UTC)[reply]
•  Oppose due to transparency issues. Thingofme (talk) 13:55, 11 February 2023 (UTC)[reply]
•  Oppose but only as an action an admin may take on their own. If the tool were, say, only part of the oversighter user right, and required consensus to implement, I think there would be more supports. See my comments above. Daniel Case (talk) 02:33, 12 February 2023 (UTC)[reply]
•  Support A clean block log is a great value for a user, and accidental or bad faith blocks may spoil it. Bináris ^{tell me} 10:46, 12 February 2023 (UTC)[reply]
•  Support As someone who had a 15-year clean block log tarnished due to an admin's mistake, I support this, Bastun (talk) 11:11, 13 February 2023 (UTC)[reply]
•  Oppose --cyrfaw (talk) 11:32, 15 February 2023 (UTC)[reply]
•  Support A clean block log is a great value for a user, and bad faith blocks spoil it. .... 0mtwb9gd5wx (talk) 04:13, 16 February 2023 (UTC)[reply]
•  Support Per Bináris and Bastun, I support this but it should be restricted to stewards, almost like bigdeletes. Just to be clear, I only support it if only stewards could do remove block entries, and the blocks were accidental, like https://en.wikipedia.org/w/index.php?title=Special:Log/block&page=User%3AFerien -- Ferien (talk) 20:11, 17 February 2023 (UTC)[reply]
•  Oppose per above. —‍(ping on reply)—‍CX Zoom (A/अ/অ) (let's talk|contribs) 07:33, 18 February 2023 (UTC)[reply]
•  Oppose. See voy:Wikivoyage_talk:Deny_recognition#How_far_should_hiding_go. Pashley (talk) 13:45, 18 February 2023 (UTC)[reply]
•  Oppose --Libertyguy (talk) 21:25, 18 February 2023 (UTC)[reply]
•  Oppose Carlotm (talk) 08:49, 19 February 2023 (UTC)[reply]
•  Support iff this is only part of oversighter rights. Else, neutral. Alfa-ketosav (talk) 14:02, 19 February 2023 (UTC)[reply]
•  Oppose hiding blocks will not fix anything ANewPreson (talk) 12:41, 21 February 2023 (UTC)[reply]
•  Oppose This is unnecessary, we can use revisiondelete instead. 星海子 (talk) 16:09, 21 February 2023 (UTC)[reply]
•  Oppose on philosophical grounds--MediaWiki loves to save literally everything, why should there be an exception to this? Snowmanonahoe (talk) 12:44, 23 February 2023 (UTC)[reply]
•  Oppose per Taivo, I don't see how [e]veryone would benefit. Accidental blocks aren't a big deal. ~~~~
  User:1234qwer1234qwer4 (talk) 17:06, 24 February 2023 (UTC)[reply]