Hi, Christian:
<Fraser_Bell> Thanks. BTW: I would join Heroes and work on the Connect.o.o replacements, if I had any idea what I was doing. But, not till elections are over. <cboltz> :-) <cboltz> the important part of connect.o.o is handling the membership and maybe being a "phonebook" for openSUSE <cboltz> the other parts (groups, polls etc.) are more or less useless and can easily be dropped
<snip>
<cboltz> Fraser_Bell: I also like the https://connect.opensuse.org/pg/profile/%24USERNAME pages so if you work on a replacement and keep them, I'll be more than happy ;-) <Fraser_Bell> Yes.
<snip>
cboltz> oh, I'm quite sure someone will happily upgrade you if you promise to do the work ;-) <Fraser_Bell> cboltz: Wait until after the Elections, please, I am now down to 20 pounds soaking wet and red, bleary eyes!!!!
Elections are over. Let's get started.
Am Samstag, 23. Februar 2019, 04:10:35 CET schrieb Fraser_Bell:
Hi, Christian:
<Fraser_Bell> Thanks. BTW: I would join Heroes and work on the Connect.o.o replacements, if I had any idea what I was doing. But, not till elections are over. <cboltz> :-) <cboltz> the important part of connect.o.o is handling the membership and maybe being a "phonebook" for openSUSE <cboltz> the other parts (groups, polls etc.) are more or less useless and can easily be dropped
<snip>
<cboltz> Fraser_Bell: I also like the https://connect.opensuse.org/pg/profile/%24USERNAME pages so if you work on a replacement and keep them, I'll be more than happy ;-) <Fraser_Bell> Yes.
<snip>
cboltz> oh, I'm quite sure someone will happily upgrade you if you promise to do the work ;-) <Fraser_Bell> cboltz: Wait until after the Elections, please, I am now down to 20 pounds soaking wet and red, bleary eyes!!!!
Elections are over. Let's get started.
How about we think of a way to block out all these d*ck*w**ds that create accounts on it without even knowing what an operating system is, let alone linux, and then just wipe out everything that is not posted by an active member of the community as determined by the same mechanism.
My first thought of how to filter could be:
To be trustworthy, a Member has to have one or more of:
- an active maintainership of packages and / or projects on the build service, or at least a home project with noticeable activity in it - logged into one of the IRC channels under their registered irc nickname in the last 30 days - posted on one of the mailinglists in the last 30 days - a pgp key in the public keyserver infrastructure that is certified by at least one other trustworthy person, trustworthy meaning either a public gpg CA like heise, or another already confirmed opensuse member
Sounds any way of doable?
Cheers MH
Gesendet: Samstag, 23. Februar 2019 um 08:37 Uhr Von: "Mathias Homann" Mathias.Homann@opensuse.org An: opensuse-project@opensuse.org Betreff: Re: [opensuse-project] dis-Connect
Am Samstag, 23. Februar 2019, 04:10:35 CET schrieb Fraser_Bell:
Hi, Christian:
<Fraser_Bell> Thanks. BTW: I would join Heroes and work on the Connect.o.o replacements, if I had any idea what I was doing. But, not till elections are over. <cboltz> :-) <cboltz> the important part of connect.o.o is handling the membership and maybe being a "phonebook" for openSUSE <cboltz> the other parts (groups, polls etc.) are more or less useless and can easily be dropped
<snip>
<cboltz> Fraser_Bell: I also like the https://connect.opensuse.org/pg/profile/%24USERNAME pages so if you work on a replacement and keep them, I'll be more than happy ;-) <Fraser_Bell> Yes.
<snip>
cboltz> oh, I'm quite sure someone will happily upgrade you if you promise to do the work ;-) <Fraser_Bell> cboltz: Wait until after the Elections, please, I am now down to 20 pounds soaking wet and red, bleary eyes!!!!
Elections are over. Let's get started.
How about we think of a way to block out all these d*ck*w**ds that create accounts on it without even knowing what an operating system is, let alone linux, and then just wipe out everything that is not posted by an active member of the community as determined by the same mechanism.
My first thought of how to filter could be:
To be trustworthy, a Member has to have one or more of:
- an active maintainership of packages and / or projects on the build service,
or at least a home project with noticeable activity in it
- logged into one of the IRC channels under their registered irc nickname in
the last 30 days
- posted on one of the mailinglists in the last 30 days
- a pgp key in the public keyserver infrastructure that is certified by at
least one other trustworthy person, trustworthy meaning either a public gpg CA like heise, or another already confirmed opensuse member
Sounds any way of doable?
The problem is that we have more possible contributions than that. You can contribute on github, our wiki, translations on Weblate as an Advocate at open source events, ....
How do you want to handle that all? Sometimes there are unknown "good" contributions. Anybody has to look manually whether that was an acceptable contribution.
Regards, Sarah
Cheers MH
-- Mathias Homann Senior Systems Engineer, IT Consultant. IT Trainer Mathias.Homann@openSUSE.org http://www.tuxonline.tech gpg key fingerprint: 8029 2240 F4DD 7776 E7D2 C042 6B8E 029E 13F2 C102
Am Samstag, 23. Februar 2019, 10:26:51 CET schrieb Sarah Julia Kriesch:
Gesendet: Samstag, 23. Februar 2019 um 08:37 Uhr Von: "Mathias Homann" Mathias.Homann@opensuse.org An: opensuse-project@opensuse.org Betreff: Re: [opensuse-project] dis-Connect
Am Samstag, 23. Februar 2019, 04:10:35 CET schrieb Fraser_Bell:
Hi, Christian:
<Fraser_Bell> Thanks. BTW: I would join Heroes and work on the Connect.o.o replacements, if I had any idea what I was doing. But, not till elections are over. <cboltz> :-) <cboltz> the important part of connect.o.o is handling the membership and maybe being a "phonebook" for openSUSE <cboltz> the other parts (groups, polls etc.) are more or less useless and can easily be dropped
<snip>
<cboltz> Fraser_Bell: I also like the https://connect.opensuse.org/pg/profile/%24USERNAME pages so if you work on a replacement and keep them, I'll be more than happy ;-) <Fraser_Bell> Yes.
<snip>
cboltz> oh, I'm quite sure someone will happily upgrade you if you promise to do the work ;-) <Fraser_Bell> cboltz: Wait until after the Elections, please, I am now down to 20 pounds soaking wet and red, bleary eyes!!!!
Elections are over. Let's get started.
How about we think of a way to block out all these d*ck*w**ds that create accounts on it without even knowing what an operating system is, let alone linux, and then just wipe out everything that is not posted by an active member of the community as determined by the same mechanism.
My first thought of how to filter could be:
To be trustworthy, a Member has to have one or more of:
- an active maintainership of packages and / or projects on the build
service, or at least a home project with noticeable activity in it
- logged into one of the IRC channels under their registered irc nickname
in the last 30 days
- posted on one of the mailinglists in the last 30 days
- a pgp key in the public keyserver infrastructure that is certified by at
least one other trustworthy person, trustworthy meaning either a public gpg CA like heise, or another already confirmed opensuse member
Sounds any way of doable?
The problem is that we have more possible contributions than that. You can contribute on github, our wiki, translations on Weblate as an Advocate at open source events, ....
How do you want to handle that all? Sometimes there are unknown "good" contributions. Anybody has to look manually whether that was an acceptable contribution.
This would be a one time process,. to identify all those spammer bot accounts.
There would also have to be rules in place, for example IF you have an opensuse membership AND you want to contribute on github, use the same email address so we can identify you. Same for the wiki, weblate, etc. Eventually all the different ways to contribute should actually be tied into a SSO setup anyway.
Cheers MH
Gesendet: Samstag, 23. Februar 2019 um 10:31 Uhr Von: "Mathias Homann" Mathias.Homann@opensuse.org An: opensuse-project@opensuse.org Betreff: Re: [opensuse-project] dis-Connect
Am Samstag, 23. Februar 2019, 10:26:51 CET schrieb Sarah Julia Kriesch:
Gesendet: Samstag, 23. Februar 2019 um 08:37 Uhr Von: "Mathias Homann" Mathias.Homann@opensuse.org An: opensuse-project@opensuse.org Betreff: Re: [opensuse-project] dis-Connect
Am Samstag, 23. Februar 2019, 04:10:35 CET schrieb Fraser_Bell:
Hi, Christian:
<Fraser_Bell> Thanks. BTW: I would join Heroes and work on the Connect.o.o replacements, if I had any idea what I was doing. But, not till elections are over. <cboltz> :-) <cboltz> the important part of connect.o.o is handling the membership and maybe being a "phonebook" for openSUSE <cboltz> the other parts (groups, polls etc.) are more or less useless and can easily be dropped
<snip>
<cboltz> Fraser_Bell: I also like the https://connect.opensuse.org/pg/profile/%24USERNAME pages so if you work on a replacement and keep them, I'll be more than happy ;-) <Fraser_Bell> Yes.
<snip>
cboltz> oh, I'm quite sure someone will happily upgrade you if you promise to do the work ;-) <Fraser_Bell> cboltz: Wait until after the Elections, please, I am now down to 20 pounds soaking wet and red, bleary eyes!!!!
Elections are over. Let's get started.
How about we think of a way to block out all these d*ck*w**ds that create accounts on it without even knowing what an operating system is, let alone linux, and then just wipe out everything that is not posted by an active member of the community as determined by the same mechanism.
My first thought of how to filter could be:
To be trustworthy, a Member has to have one or more of:
- an active maintainership of packages and / or projects on the build
service, or at least a home project with noticeable activity in it
- logged into one of the IRC channels under their registered irc nickname
in the last 30 days
- posted on one of the mailinglists in the last 30 days
- a pgp key in the public keyserver infrastructure that is certified by at
least one other trustworthy person, trustworthy meaning either a public gpg CA like heise, or another already confirmed opensuse member
Sounds any way of doable?
The problem is that we have more possible contributions than that. You can contribute on github, our wiki, translations on Weblate as an Advocate at open source events, ....
How do you want to handle that all? Sometimes there are unknown "good" contributions. Anybody has to look manually whether that was an acceptable contribution.
This would be a one time process,. to identify all those spammer bot accounts.
There would also have to be rules in place, for example IF you have an opensuse membership AND you want to contribute on github, use the same email address so we can identify you. Same for the wiki, weblate, etc. Eventually all the different ways to contribute should actually be tied into a SSO setup anyway.
Cheers MH
If that would be done on github.... I know different openSUSE Members who are not accepted for the group openSUSE on Github. Any time that has not been a part of the openSUSE Membership any more. Something like that would make it easier to filter these active openSUSE Members compared to no openSUSE Members. But that is a lot of work now to add all openSUSE Members subsequently.
Regards, Sarah
Le 23/02/2019 à 10:26, Sarah Julia Kriesch a écrit :
How do you want to handle that all? Sometimes there are unknown "good" contributions. Anybody has to look manually whether that was an acceptable contribution.
this is an other problem, we should right now focus of selecting a membership platform :-)
and we may have to find later how to cope with membership subscription, because some contributions can't be seen through the web...
thanks :-))
jdd
On 2/23/19 2:00 AM, jdd@dodin.org wrote:
Le 23/02/2019 à 10:26, Sarah Julia Kriesch a écrit :
How do you want to handle that all? Sometimes there are unknown "good" contributions. Anybody has to look manually whether that was an acceptable contribution.
this is an other problem, we should right now focus of selecting a membership platform :-)
and we may have to find later how to cope with membership subscription, because some contributions can't be seen through the web...
Agreed. Let's take it one step at a time.
On 23/02/2019 08.37, Mathias Homann wrote:
Am Samstag, 23. Februar 2019, 04:10:35 CET schrieb Fraser_Bell:
Hi, Christian:
<Fraser_Bell> Thanks. BTW: I would join Heroes and work on the Connect.o.o replacements, if I had any idea what I was doing. But, not till elections are over. <cboltz> :-) <cboltz> the important part of connect.o.o is handling the membership and maybe being a "phonebook" for openSUSE <cboltz> the other parts (groups, polls etc.) are more or less useless and can easily be dropped
<snip>
<cboltz> Fraser_Bell: I also like the https://connect.opensuse.org/pg/profile/%24USERNAME pages so if you work on a replacement and keep them, I'll be more than happy ;-) <Fraser_Bell> Yes.
<snip>
cboltz> oh, I'm quite sure someone will happily upgrade you if you promise to do the work ;-) <Fraser_Bell> cboltz: Wait until after the Elections, please, I am now down to 20 pounds soaking wet and red, bleary eyes!!!!
Elections are over. Let's get started.
How about we think of a way to block out all these d*ck*w**ds that create accounts on it without even knowing what an operating system is, let alone linux, and then just wipe out everything that is not posted by an active member of the community as determined by the same mechanism.
That's the job for the people that volunteered to clean the spam (like me). We have to go trough every post, answer if appropriate (some people ask Linux questions, so just tell them to go to the forum or to the mail list), delete if not.
Knurpht said that the forum team may have a list of all the spammers they block there, the list might be reused here.
My first thought of how to filter could be:
To be trustworthy, a Member has to have one or more of:
No, that's the job of the Membership Officials. We should not interfere.
Am 23.02.19 um 04:10 schrieb Fraser_Bell:
Elections are over. Let's get started.
Did anything happen wrt phasing out connect.o.o?
When I did volunteer to tackle the spammers, I was actually thinking of a few weeks / months.
Today, there is still no sign of connect.o.o being shut down any time soon.
The most worrisome part is, that new accounts are either SPAM or SUSE employees. Lots of them.
I'm 100% sure those old-timer SUSE employees did not suddenly after 20 years have the idea "oh, connect is such a cool platform, let's register (and then do nothing on it)", so certainly someone must have forced them to register to this system.
But why? Hell, I'm almost sure I accidentally banned / deleted some of these accounts when doing the daily spam-chore.
Would it be possible for the board to investigate WhyTF all those SUSE people are still registering? And when we'll finally shut down connect.o.o?
On 19/07/2019 16:12, Stefan Seyfried wrote:
Am 23.02.19 um 04:10 schrieb Fraser_Bell:
Elections are over. Let's get started.
Did anything happen wrt phasing out connect.o.o?
When I did volunteer to tackle the spammers, I was actually thinking of a few weeks / months.
Today, there is still no sign of connect.o.o being shut down any time soon.
The most worrisome part is, that new accounts are either SPAM or SUSE employees. Lots of them.
I'm 100% sure those old-timer SUSE employees did not suddenly after 20 years have the idea "oh, connect is such a cool platform, let's register (and then do nothing on it)", so certainly someone must have forced them to register to this system.
But why? Hell, I'm almost sure I accidentally banned / deleted some of these accounts when doing the daily spam-chore.
Would it be possible for the board to investigate WhyTF all those SUSE people are still registering? And when we'll finally shut down connect.o.o?
Without investigating it, I can almost certainly tell you why, Connect is still required for membership applications (that is the only reason it still exists), from talking to the membership committee there was a large spike in membership applications when I sent the email out to this list about votes on the change of openSUSE's name and foundation issues.
It seems that there are alot of people who are eligible for membership who didn't care enough about voting for the board to join as members but do have enough of an opinion on the project name, logo and foundations to sign up for membership in recent time so that they can participate in those votes as they happen. I suspect a large percentage of these people are SUSE Employee's. Personally I never asked the membership committee who was joining as a new member but I got feedback from them that after I sent that email we had the biggest influx of membership applications in recent time. Thus the influx in connect accounts, I expect this will die down again over time.
More generally to shut down connect we need a secure way to store a list of members usernames and emails that only a select number of people (Membership Committee) can access. I briefly mentioned this to SUSE IT last week (they also have an interest in it being shut down) but I didn't here much back in terms of a commitment to do some work for replacing it. They are also exceptionally busy and understaffed atm.
But the short answer is we can shut it down when we have a replacement "membership system", we just haven't found someone willing to look into that yet.
Cheers
On 19/07/2019 08.42, Stefan Seyfried wrote:
Am 23.02.19 um 04:10 schrieb Fraser_Bell:
Elections are over. Let's get started.
Did anything happen wrt phasing out connect.o.o?
When I did volunteer to tackle the spammers, I was actually thinking of a few weeks / months.
Today, there is still no sign of connect.o.o being shut down any time soon.
The most worrisome part is, that new accounts are either SPAM or SUSE employees. Lots of them.
I noticed the increase, but not that they are employees. I do not read the mail addresses (don't know where they are - ah, I see now). I may have killed some by error, and also not killed some because of doubts.
I'm 100% sure those old-timer SUSE employees did not suddenly after 20 years have the idea "oh, connect is such a cool platform, let's register (and then do nothing on it)", so certainly someone must have forced them to register to this system.
But why? Hell, I'm almost sure I accidentally banned / deleted some of these accounts when doing the daily spam-chore.
I think they are people applying for membership to opensuse.
-
Carlos E. R. -
Carlos E.R. -
Fraser_Bell -
jdd@dodin.org -
Mathias Homann -
Sarah Julia Kriesch -
Simon Lees -
Stefan Seyfried