Administrator notice:
There was an issue where people were being logged in as other users. This was a result of a configuration issue with a server-side caching system we were trying. The issue has been resolved. We've wiped the active sessions as a precaution.
UPDATE: After the server-side caching mechanism was fixed, it left the session system in an inconsistent state. We have fixed the underlying bug and have cleared out the active sessions again. (Sorry about that.)
Basically, random people have been logging in to find themselves on someone else's account. Yes, with full access. Some people have complained of deleted submissions and notices. First brought up in
this thread. Yet again, despite saying the issue is "resolved", it still required further action.
Fun quote:
I've asked Yak what possible justification there could be for a frontend cache and got:
"the changes were done without consulting me, measures are being taken so that would not happen again more then once." and "pretty sure 99.98% of all cases was the ISPs cache. deleting sessions is not really required, but i guess it will make people feel better."
Yak wasn't consulted? There's only about 3 people who even have that sort of access, and they didn't think to perhaps inform the rest of the "team"? And the part about it not happening again "more then once" is ... I don't even understand that.
I know FA is a complete clusterfuck, but this level of failure still manages to surprise me. Instead of, say, fixing some existing issues or spending some more time on the new UI, it's decided instead to spend some time adding something new, not telling one of the few people who could actually help and/or fix it,
and then fucking it up. For 9 hours. Great job!
But hey, at least no one got into an admin account, right?
