[opensuse-project] New members procedure
Hi, I just learned that the recommended procedure for prospective new members is to write a profile on <https://connect.opensuse.org/> It is described here: <https://en.opensuse.org/openSUSE:Members#Detailed_steps_to_follow> You know that I am one of the two volunteers that watch for spam on the connect platform. I have been told that the platform is insecure, and in fact people remove their profile. I don't know if this claims are true or not, but I ask here for your consideration. For example, the other day a new user appeared, "rose25". Within a day, she made "friends" with possibly everybody on the platform, surely using a script, there is no other way to do thousands of friends. A few corresponded. Subsequently I banned her. Quickly another user appeared, "rose2525", but so far no activity I can can undoubtedly classify as "spam". However, some real users have made friends with her (like Malcolm Lewis, or Stefan Seyfried, but not listed later as such). I am suspicious and undecided. The point: I highly suspect that this "rose25" got the emails and personal data on the profiles of everybody. Thus I ask if would it not be better to modify the procedure for prospective new members to provide their "resume" in some other secure manner. I am a bit worried. I do not want to be blamed for breach of privacy (EU regulations etc) as I am 50% the active admin of that platform, which I barely understand. I do not take responsibility in such an event. -- Cheers / Saludos, Carlos E. R. (from 15.0 x86_64 at Telcontar)
Hello, On Thu, 19 Sep 2019 at 13:47, Carlos E. R. <robin.listas@telefonica.net> wrote:
Hi,
I just learned that the recommended procedure for prospective new members is to write a profile on <https://connect.opensuse.org/>
snipped<
Thus I ask if would it not be better to modify the procedure for prospective new members to provide their "resume" in some other secure manner.
Or may be register using combination of captch & OTP sent on users mobile number? Regards, Amey.
I am a bit worried. I do not want to be blamed for breach of privacy (EU regulations etc) as I am 50% the active admin of that platform, which I barely understand. I do not take responsibility in such an event.
-- Cheers / Saludos,
Carlos E. R. (from 15.0 x86_64 at Telcontar)
-- To unsubscribe, e-mail: opensuse-project+unsubscribe@opensuse.org To contact the owner, email: opensuse-project+owner@opensuse.org
Hi, I think this is a big issue, because if you visit connect.o.o it looks like a big mess and massive insecure. In this state you cannot want that someone should logon to this website and maybe it's a security risk. Carlos, thank you for your cry to help. I don't think that you have any chance to fight the spam only with two people. I am willing to help but what can we do to clean connect.o.o from the spam and to make the plattform more secure? How can we seperate real users from spam bots? And how can we implement a 2FA? We cannot leave connect.o.o in this state. Best Christian Am 19. September 2019 10:14:36 MESZ schrieb "Carlos E. R." <robin.listas@telefonica.net>:
Hi,
I just learned that the recommended procedure for prospective new members is to write a profile on <https://connect.opensuse.org/>
It is described here: <https://en.opensuse.org/openSUSE:Members#Detailed_steps_to_follow>
You know that I am one of the two volunteers that watch for spam on the connect platform. I have been told that the platform is insecure, and in fact people remove their profile. I don't know if this claims are true or not, but I ask here for your consideration.
For example, the other day a new user appeared, "rose25". Within a day, she made "friends" with possibly everybody on the platform, surely using a script, there is no other way to do thousands of friends. A few corresponded.
Subsequently I banned her.
Quickly another user appeared, "rose2525", but so far no activity I can can undoubtedly classify as "spam". However, some real users have made friends with her (like Malcolm Lewis, or Stefan Seyfried, but not listed later as such). I am suspicious and undecided.
The point: I highly suspect that this "rose25" got the emails and personal data on the profiles of everybody.
Thus I ask if would it not be better to modify the procedure for prospective new members to provide their "resume" in some other secure manner.
I am a bit worried. I do not want to be blamed for breach of privacy (EU regulations etc) as I am 50% the active admin of that platform, which I barely understand. I do not take responsibility in such an event. -- To unsubscribe, e-mail: opensuse-project+unsubscribe@opensuse.org To contact the owner, email: opensuse-project+owner@opensuse.org
On 19/09/2019 16.54, Christian Imhorst wrote:
Hi,
I think this is a big issue, because if you visit connect.o.o it looks like a big mess and massive insecure. In this state you cannot want that someone should logon to this website and maybe it's a security risk.
Carlos, thank you for your cry to help. I don't think that you have any chance to fight the spam only with two people. I am willing to help but what can we do to clean connect.o.o from the spam and to make the plattform more secure? How can we seperate real users from spam bots? And how can we implement a 2FA?
We cannot leave connect.o.o in this state.
As far as I know, there is currently no spam in that platform. There are some attempts per day, but at least once a day we remove it, it just takes a few minutes. Of course, a spammer may be alive some hours. We do not remove them: instead the default action is "ban". The reasoning is that a removed user comes back, while a banned one has to create a new one with different name. Which means that their names remain visible, and some times the name itself is the spam action. You can click on those names, but no action happens. Examples: KSP Chartered Surveyors Area Dental Clinic IBC Carpentry ... But I'm worried most about real people writing private information there and spammers collecting it. If registration wouldn't be automatic, but had to be human reviewed first... Help is welcomed, but I think it is more important to replace it with something else. I do not participate in that, not my skill set. There was a thread about it months ago, and other people can fill you in on the current state of things. The basic requirement is hold a list of members, that's all. With some features. Not a friendship platform. -- Cheers / Saludos, Carlos E. R. (from openSUSE 15.1 (Legolas))
On 9/19/19 1:14 AM, Carlos E. R. wrote:
Hi,
I just learned that the recommended procedure for prospective new members is to write a profile on <https://connect.opensuse.org/>
It is described here: <https://en.opensuse.org/openSUSE:Members#Detailed_steps_to_follow>
You know that I am one of the two volunteers that watch for spam on the connect platform. I have been told that the platform is insecure, and in fact people remove their profile. I don't know if this claims are true or not, but I ask here for your consideration.
For example, the other day a new user appeared, "rose25". Within a day, she made "friends" with possibly everybody on the platform, surely using a script, there is no other way to do thousands of friends. A few corresponded.
Subsequently I banned her.
Quickly another user appeared, "rose2525", but so far no activity I can can undoubtedly classify as "spam". However, some real users have made friends with her (like Malcolm Lewis, or Stefan Seyfried, but not listed later as such). I am suspicious and undecided.
The point: I highly suspect that this "rose25" got the emails and personal data on the profiles of everybody.
Thus I ask if would it not be better to modify the procedure for prospective new members to provide their "resume" in some other secure manner.
I am a bit worried. I do not want to be blamed for breach of privacy (EU regulations etc) as I am 50% the active admin of that platform, which I barely understand. I do not take responsibility in such an event.
Hi, Carlos: As I recall, I had tried to get something going to get a replacement for Connect that would make a better, more secure Membership list for the purposes of votes and other openSUSE activities. A couple of people started something, but nothing ever got anywhere. Without enough motivated help, and after an excruciating experience with the Elections and the Elections Committee (others were Ish and Edwin, who pulled their weight admirably) unable to get decent assistance with the last Board Elections, I was not about to go ahead with it on my own. I decided to instead devote my time to my Recordings and subsequently dropped out of that failed attempt to replace Connect. This is not aimed at you, I want to be clear, as you and another stepped up and have done a nice job at reducing the spam and similar activity, and I admire your resolve to help with that. But, this would all be a moot point, now, if I had received the full assistance with the move away from Connect months ago. Thanks for bringing this up, Carlos, as it *DOES* need to be addressed. -- -Gerry Makaro openSUSE Member openSUSE Contributor YaST Contributor aka Fraser_Bell on the Forums, OBS, IRC, and mail at openSUSE.org Fraser-Bell on Github -- To unsubscribe, e-mail: opensuse-project+unsubscribe@opensuse.org To contact the owner, email: opensuse-project+owner@opensuse.org
On 20/09/2019 05.36, Fraser_Bell wrote:
On 9/19/19 1:14 AM, Carlos E. R. wrote:
Hi, Carlos:
As I recall, I had tried to get something going to get a replacement for Connect that would make a better, more secure Membership list for the purposes of votes and other openSUSE activities.
A couple of people started something, but nothing ever got anywhere. Without enough motivated help, and after an excruciating experience with the Elections and the Elections Committee (others were Ish and Edwin, who pulled their weight admirably) unable to get decent assistance with the last Board Elections, I was not about to go ahead with it on my own.
I decided to instead devote my time to my Recordings and subsequently dropped out of that failed attempt to replace Connect.
This is not aimed at you, I want to be clear, as you and another stepped up and have done a nice job at reducing the spam and similar activity, and I admire your resolve to help with that.
But, this would all be a moot point, now, if I had received the full assistance with the move away from Connect months ago.
Thanks for bringing this up, Carlos, as it *DOES* need to be addressed.
Thanks. I was rather hopping to move the membership procedure, perhaps with some urgency, to a limited distribution mail list, that the membership committee read. On the other hand, that becomes "not open" :-( -- Cheers / Saludos, Carlos E. R. (from openSUSE 15.1 (Legolas))
On 9/20/19 6:18 PM, Carlos E. R. wrote:
On 20/09/2019 05.36, Fraser_Bell wrote:
On 9/19/19 1:14 AM, Carlos E. R. wrote:
Hi, Carlos:
As I recall, I had tried to get something going to get a replacement for Connect that would make a better, more secure Membership list for the purposes of votes and other openSUSE activities.
A couple of people started something, but nothing ever got anywhere. Without enough motivated help, and after an excruciating experience with the Elections and the Elections Committee (others were Ish and Edwin, who pulled their weight admirably) unable to get decent assistance with the last Board Elections, I was not about to go ahead with it on my own.
I decided to instead devote my time to my Recordings and subsequently dropped out of that failed attempt to replace Connect.
This is not aimed at you, I want to be clear, as you and another stepped up and have done a nice job at reducing the spam and similar activity, and I admire your resolve to help with that.
But, this would all be a moot point, now, if I had received the full assistance with the move away from Connect months ago.
Thanks for bringing this up, Carlos, as it *DOES* need to be addressed.
Thanks.
I was rather hopping to move the membership procedure, perhaps with some urgency, to a limited distribution mail list, that the membership committee read. On the other hand, that becomes "not open" :-(
This is the longer term plan, but its also not the hard part, the harder part is storing the list of members usernames and email addresses in a manner that only the people who really need to access the data can access it. -- Simon Lees (Simotek) http://simotek.net Emergency Update Team keybase.io/simotek SUSE Linux Adelaide Australia, UTC+10:30 GPG Fingerprint: 5B87 DB9D 88DC F606 E489 CEC5 0922 C246 02F0 014B -- To unsubscribe, e-mail: opensuse-project+unsubscribe@opensuse.org To contact the owner, email: opensuse-project+owner@opensuse.org
On 20/09/2019 11.38, Simon Lees wrote:
I was rather hopping to move the membership procedure, perhaps with some urgency, to a limited distribution mail list, that the membership committee read. On the other hand, that becomes "not open" :-(
This is the longer term plan, but its also not the hard part, the harder part is storing the list of members usernames and email addresses in a manner that only the people who really need to access the data can access it.
What about making connect not admit new registrations automatically? But delayed by a human inspecting them? Let them register but only have access to their own profile, not published till after inspection. And yes, I do volunteer for that human inspector. I am already doing it, but after the fact. That would impede spammers getting access to email addresses. -- Cheers / Saludos, Carlos E. R. (from openSUSE 15.1 (Legolas))
On 9/20/19 7:26 PM, Carlos E. R. wrote:
On 20/09/2019 11.38, Simon Lees wrote:
I was rather hopping to move the membership procedure, perhaps with some urgency, to a limited distribution mail list, that the membership committee read. On the other hand, that becomes "not open" :-(
This is the longer term plan, but its also not the hard part, the harder part is storing the list of members usernames and email addresses in a manner that only the people who really need to access the data can access it.
What about making connect not admit new registrations automatically? But delayed by a human inspecting them? Let them register but only have access to their own profile, not published till after inspection.
And yes, I do volunteer for that human inspector. I am already doing it, but after the fact.
That would impede spammers getting access to email addresses.
At this stage modifying connect to do anything different, especially given its using the same account system as all other openSUSE infra is almost certainly harder then writing its replacement. Cheers -- Simon Lees (Simotek) http://simotek.net Emergency Update Team keybase.io/simotek SUSE Linux Adelaide Australia, UTC+10:30 GPG Fingerprint: 5B87 DB9D 88DC F606 E489 CEC5 0922 C246 02F0 014B -- To unsubscribe, e-mail: opensuse-project+unsubscribe@opensuse.org To contact the owner, email: opensuse-project+owner@opensuse.org
On 20/09/2019 12.20, Simon Lees wrote:
On 9/20/19 7:26 PM, Carlos E. R. wrote:
On 20/09/2019 11.38, Simon Lees wrote:
I was rather hopping to move the membership procedure, perhaps with some urgency, to a limited distribution mail list, that the membership committee read. On the other hand, that becomes "not open" :-(
This is the longer term plan, but its also not the hard part, the harder part is storing the list of members usernames and email addresses in a manner that only the people who really need to access the data can access it.
What about making connect not admit new registrations automatically? But delayed by a human inspecting them? Let them register but only have access to their own profile, not published till after inspection.
And yes, I do volunteer for that human inspector. I am already doing it, but after the fact.
That would impede spammers getting access to email addresses.
At this stage modifying connect to do anything different, especially given its using the same account system as all other openSUSE infra is almost certainly harder then writing its replacement.
The replacement has blocked, stopped. -- Cheers / Saludos, Carlos E. R. (from openSUSE 15.1 (Legolas))
On 9/20/19 8:13 PM, Carlos E. R. wrote:
On 20/09/2019 12.20, Simon Lees wrote:
On 9/20/19 7:26 PM, Carlos E. R. wrote:
On 20/09/2019 11.38, Simon Lees wrote:
I was rather hopping to move the membership procedure, perhaps with some urgency, to a limited distribution mail list, that the membership committee read. On the other hand, that becomes "not open" :-(
This is the longer term plan, but its also not the hard part, the harder part is storing the list of members usernames and email addresses in a manner that only the people who really need to access the data can access it.
What about making connect not admit new registrations automatically? But delayed by a human inspecting them? Let them register but only have access to their own profile, not published till after inspection.
And yes, I do volunteer for that human inspector. I am already doing it, but after the fact.
That would impede spammers getting access to email addresses.
At this stage modifying connect to do anything different, especially given its using the same account system as all other openSUSE infra is almost certainly harder then writing its replacement.
The replacement has blocked, stopped.
Yep, and finding someone to work on connect would be even harder. -- Simon Lees (Simotek) http://simotek.net Emergency Update Team keybase.io/simotek SUSE Linux Adelaide Australia, UTC+10:30 GPG Fingerprint: 5B87 DB9D 88DC F606 E489 CEC5 0922 C246 02F0 014B -- To unsubscribe, e-mail: opensuse-project+unsubscribe@opensuse.org To contact the owner, email: opensuse-project+owner@opensuse.org
Le vendredi 20 septembre 2019 à 20:29 +0930, Simon Lees a écrit :
On 9/20/19 8:13 PM, Carlos E. R. wrote:
On 20/09/2019 12.20, Simon Lees wrote:
At this stage modifying connect to do anything different, especially given its using the same account system as all other openSUSE infra is almost certainly harder then writing its replacement.
The replacement has blocked, stopped.
Yep, and finding someone to work on connect would be even harder.
Carlos' suggestion from a few mails before was to simply move the membership procedure outside of connect (he gave the example of a restricted mailing list). We've been through that discussion a few months ago, there are solutions to handle the list of members without connect and without building a new tool. Some of them require manual management, most of them are not great, probably none of them are good for the long term. But I do believe they're still better than the current state of things. We do not have to stay with connect while we wait for people to step up and find a good long-term solution. Cheers, Vincent -- Les gens heureux ne sont pas pressés. -- To unsubscribe, e-mail: opensuse-project+unsubscribe@opensuse.org To contact the owner, email: opensuse-project+owner@opensuse.org
Am September 20, 2019 11:14:30 AM UTC schrieb Vincent Untz <vuntz@opensuse.org>:
We've been through that discussion a few months ago, there are solutions to handle the list of members without connect and without building a new tool. Some of them require manual management, most of them are not great, probably none of them are good for the long term. But I do believe they're still better than the current state of things.
We do not have to stay with connect while we wait for people to step up and find a good long-term solution.
+1 Lars -- To unsubscribe, e-mail: opensuse-project+unsubscribe@opensuse.org To contact the owner, email: opensuse-project+owner@opensuse.org
Le 20 septembre 2019 12:14:30 GMT+01:00, Vincent Untz <vuntz@opensuse.org> a écrit :
Le vendredi 20 septembre 2019 à 20:29 +0930, Simon Lees a écrit :
On 9/20/19 8:13 PM, Carlos E. R. wrote:
On 20/09/2019 12.20, Simon Lees wrote:
At this stage modifying connect to do anything different, especially given its using the same account system as all other openSUSE infra is almost certainly harder then writing its replacement.
The replacement has blocked, stopped.
Yep, and finding someone to work on connect would be even harder.
Carlos' suggestion from a few mails before was to simply move the membership procedure outside of connect (he gave the example of a restricted mailing list).
We've been through that discussion a few months ago, there are solutions to handle the list of members without connect and without building a new tool. Some of them require manual management, most of them are not great, probably none of them are good for the long term. But I do believe they're still better than the current state of things.
We do not have to stay with connect while we wait for people to step up and find a good long-term solution.
Cheers,
Vincent
https://en.opensuse.org/openSUSE_talk:Membership_officials is the place to work. since February, little have been done. I keep thinking using "galette" is the best way, as this free software is easy to use and do exactly what we need, that is managing subscribers. any user can manage it's data. the user test session is still working, and I'm pretty sure I can have a free session for opensuse by a group that already gives one to my Linux user group. sent from Easdale island 😄, as I'm touring... -- Envoyé de mon appareil Android avec Courriel K-9 Mail. Veuillez excuser ma brièveté. -- To unsubscribe, e-mail: opensuse-project+unsubscribe@opensuse.org To contact the owner, email: opensuse-project+owner@opensuse.org
Op vrijdag 20 september 2019 22:08:46 CEST schreef jdd:
Le 20 septembre 2019 12:14:30 GMT+01:00, Vincent Untz <vuntz@opensuse.org> a écrit :
Le vendredi 20 septembre 2019 à 20:29 +0930, Simon Lees a écrit :
On 9/20/19 8:13 PM, Carlos E. R. wrote:
On 20/09/2019 12.20, Simon Lees wrote:
At this stage modifying connect to do anything different, especially given its using the same account system as all other openSUSE infra is almost certainly harder then writing its replacement.
The replacement has blocked, stopped.
Yep, and finding someone to work on connect would be even harder.
Carlos' suggestion from a few mails before was to simply move the membership procedure outside of connect (he gave the example of a restricted mailing list).
We've been through that discussion a few months ago, there are solutions to handle the list of members without connect and without building a new tool. Some of them require manual management, most of them are not great, probably none of them are good for the long term. But I do believe they're still better than the current state of things.
We do not have to stay with connect while we wait for people to step up and find a good long-term solution.
Cheers,
Vincent
https://en.opensuse.org/openSUSE_talk:Membership_officials
is the place to work. since February, little have been done. I keep thinking using "galette" is the best way, as this free software is easy to use and do exactly what we need, that is managing subscribers. any user can manage it's data. the user test session is still working, and I'm pretty sure I can have a free session for opensuse by a group that already gives one to my Linux user group.
sent from Easdale island 😄, as I'm touring... jdd, that would be awesome. A bit off-topic: Could this be installed/ implemented in the openSUSE infra?
-- Gertjan Lettink a.k.a. Knurpht openSUSE Board Member openSUSE Forums Team -- To unsubscribe, e-mail: opensuse-project+unsubscribe@opensuse.org To contact the owner, email: opensuse-project+owner@opensuse.org
On 9/20/19 1:13 PM, Knurpht-openSUSE wrote:
jdd, that would be awesome. A bit off-topic: Could this be installed/ implemented in the openSUSE infra?
Not so off-topic, IMHO. Yes, this would be the ideal move, as all things like this going forward should be under full control of the Project/Community. -- -Gerry Makaro openSUSE Member openSUSE Contributor YaST Contributor aka Fraser_Bell on the Forums, OBS, IRC, and mail at openSUSE.org Fraser-Bell on Github -- To unsubscribe, e-mail: opensuse-project+unsubscribe@opensuse.org To contact the owner, email: opensuse-project+owner@opensuse.org
Knurpht-openSUSE wrote:
Op vrijdag 20 september 2019 22:08:46 CEST schreef jdd:
I keep thinking using "galette" is the best way, as this free software is easy to use and do exactly what we need, that is managing subscribers. any user can manage it's data. the user test session is still working, and I'm pretty sure I can have a free session for opensuse by a group that already gives one to my Linux user group.
sent from Easdale island 😄, as I'm touring... jdd, that would be awesome. A bit off-topic: Could this be installed/ implemented in the openSUSE infra?
It's a php app, backed by mysql. There should be no problem running it in Nuernberg. -- Per Jessen, Zürich (20.1°C) member, openSUSE Heroes. -- To unsubscribe, e-mail: opensuse-project+unsubscribe@opensuse.org To contact the owner, email: opensuse-project+owner@opensuse.org
On 9/20/19 1:08 PM, jdd wrote:
Le 20 septembre 2019 12:14:30 GMT+01:00, Vincent Untz <vuntz@opensuse.org> a écrit :
Le vendredi 20 septembre 2019 à 20:29 +0930, Simon Lees a écrit :
On 9/20/19 8:13 PM, Carlos E. R. wrote:
On 20/09/2019 12.20, Simon Lees wrote:
At this stage modifying connect to do anything different, especially given its using the same account system as all other openSUSE infra is almost certainly harder then writing its replacement.
The replacement has blocked, stopped.
Yep, and finding someone to work on connect would be even harder.
Carlos' suggestion from a few mails before was to simply move the membership procedure outside of connect (he gave the example of a restricted mailing list).
We've been through that discussion a few months ago, there are solutions to handle the list of members without connect and without building a new tool. Some of them require manual management, most of them are not great, probably none of them are good for the long term. But I do believe they're still better than the current state of things.
We do not have to stay with connect while we wait for people to step up and find a good long-term solution.
Cheers,
Vincent
https://en.opensuse.org/openSUSE_talk:Membership_officials
is the place to work. since February, little have been done. I keep thinking using "galette" is the best way, as this free software is easy to use and do exactly what we need, that is managing subscribers. any user can manage it's data. the user test session is still working, and I'm pretty sure I can have a free session for opensuse by a group that already gives one to my Linux user group.
sent from Easdale island 😄, as I'm touring...
Thanks, jdd. Maybe this can still get done. I know you (and a couple of others) put some work into it back then, but got very little feedback. As for me, at this time, I am about to start up the very early (pre-)stages of the next Board Elections, again along with Ish Sookun and Edwin Zakaria -- who have also confirmed this to me -- and with the help of anyone else willing to step up and help out. At the same time, I am in the middle of Recording and Releasing Singles and an upcoming Album, so a lot of time is tied up there. One caveat: Anyone else stepping up to help out with the elections absolutely *must* be prepared to commit to work on it, not just volunteer in order to get a badge on their shoulder, then sit back and let everyone else on the team do the work. But, the three of us certainly *would* appreciate any *real* help we can get. Edwin, Ish, and I hope to raise the bar even higher with this next Board Election. -- -Gerry Makaro openSUSE Member openSUSE Contributor YaST Contributor aka Fraser_Bell on the Forums, OBS, IRC, and mail at openSUSE.org Fraser-Bell on Github -- To unsubscribe, e-mail: opensuse-project+unsubscribe@opensuse.org To contact the owner, email: opensuse-project+owner@opensuse.org
Le 21/09/2019 à 02:29, Fraser_Bell a écrit :
On 9/20/19 1:08 PM, jdd wrote:
https://en.opensuse.org/openSUSE_talk:Membership_officials
is the place to work. since February, little have been done. I keep thinking using "galette" is the best way, as this free software is easy to use and do exactly what we need, that is managing subscribers. any user can manage it's data. the user test session is still working, and I'm pretty sure I can have a free session for opensuse by a group that already gives one to my Linux user group.
sent from Easdale island 😄, as I'm touring...
Thanks, jdd. Maybe this can still get done. I know you (and a couple of others) put some work into it back then, but got very little feedback.
yes. to manage 500 members with galette should be pretty obvious. everybody can edit his data, except the one that the administrator think mandatory. For example one can easily change phone number (if any), but not email if this one is the only way to identify the member.
But, the three of us certainly *would* appreciate any *real* help we can get.
Edwin, Ish, and I hope to raise the bar even higher with this next Board Election.
of course, I can (co)manage an opensuse galette session if necessary, it's very little work :-) jdd (returned :-) -- http://dodin.org -- To unsubscribe, e-mail: opensuse-project+unsubscribe@opensuse.org To contact the owner, email: opensuse-project+owner@opensuse.org
On 9/23/19 10:08 AM, jdd@dodin.org wrote:
Le 21/09/2019 à 02:29, Fraser_Bell a écrit :
But, the three of us certainly *would* appreciate any *real* help we can get.
Edwin, Ish, and I hope to raise the bar even higher with this next Board Election.
of course, I can (co)manage an opensuse galette session if necessary, it's very little work :-)
jdd (returned :-)
That would be very much appreciated, jdd. We will keep you posted when we get into the planning stages. Thank you, -- -Gerry Makaro openSUSE Member openSUSE Contributor YaST Contributor aka Fraser_Bell on the Forums, OBS, IRC, and mail at openSUSE.org Fraser-Bell on Github -- To unsubscribe, e-mail: opensuse-project+unsubscribe@opensuse.org To contact the owner, email: opensuse-project+owner@opensuse.org
Hi On 9/19/19 5:44 PM, Carlos E. R. wrote:
Hi,
I just learned that the recommended procedure for prospective new members is to write a profile on <https://connect.opensuse.org/>
It is described here: <https://en.opensuse.org/openSUSE:Members#Detailed_steps_to_follow>
You know that I am one of the two volunteers that watch for spam on the connect platform. I have been told that the platform is insecure, and in fact people remove their profile. I don't know if this claims are true or not, but I ask here for your consideration.
I am a bit worried. I do not want to be blamed for breach of privacy (EU regulations etc) as I am 50% the active admin of that platform, which I barely understand. I do not take responsibility in such an event.
Don't worry, your not responsible for the data. This issue has been raised several times now and the answer is pretty much still the same, when someone implements a new GDPR complient system for storing membership info connect will be switched off. However as of right now unfortunently it doesn't seem like anyone is working on that. Volunteers are more then welcome. -- Simon Lees (Simotek) http://simotek.net Emergency Update Team keybase.io/simotek SUSE Linux Adelaide Australia, UTC+10:30 GPG Fingerprint: 5B87 DB9D 88DC F606 E489 CEC5 0922 C246 02F0 014B -- To unsubscribe, e-mail: opensuse-project+unsubscribe@opensuse.org To contact the owner, email: opensuse-project+owner@opensuse.org
participants (11)
-
Amey Abhyankar -
Carlos E. R. -
Christian Imhorst -
Fraser_Bell -
jdd -
jdd@dodin.org
-
Knurpht-openSUSE -
Lars Vogdt -
Per Jessen -
Simon Lees -
Vincent Untz