I think that RISK_SPAM is a good name. The one I don't like is RISK_ADMIN. Admin is not a risk, it is a historical role that had this level of trust. The best alternative I can think of is RISK_CONFIG - user can change global configuration, which opens potentially unimited security risks.Tim Hunt 17:46, 18 September 2006 (CDT)