Vojtěch Zeisek wrote:
Dne neděle 16. dubna 2023 13:04:55 CEST, Per Jessen napsal(a):
Yep. We already publish DKIM / DMARC data.
Good.
It is a matter of opinion :-) It doesn't exactly do much for us when we don't have dedicated outgoing servers. In fact, despite (or because of) our policies being very permissive, some providers refuse emails from @opensuse.org.
For starters, there will be 700-800 members who will all need to set up their systems for such a new feature. This will no doubt require some hand-holding, never mind how well it is described on that wiki page
I'd guess this should be solvable "in standard way", i.e. ML, fora, IRC, ...
Many people look at this slightly differently. When they have been issued an account and some credentials, they often feel entitled to help. Equally often, problems are perceived to be caused by whoever provided the account and credentials.
Next, there is userid+password management. People will need to authenticate to use their accounts - the easiest (implementation) is userid+pwd. People forget them, want to change them, need to setup an account on a new system etc etc. Another question here is - do we add all of them to our internal accounts system or do we maintain a separate accounts system?
IMHO the best would be to use existing openSUSE accounts as for any other part of our infrastructure.
Yes, probably. I suspect the issue would be - today, the vast majority of our members don't have an account - with email suddenly requiring an account, everybody will want one. Today, we already have one or two account support requests, per week.
Third, we will need some sort of rate limiting - accounts are stolen all the time, we don't want anyone abusing our mail system and sending thousands of mails when an acocunt has been compromised. (not really a support matter though).
Yep, there should be dedicated volunteer for that, but accounts can be stolen even now - how is this solved now?
Today it isn't so important - a compromised account might give someone access to bugzilla, but not much else. A compromised email account can cause our mailserver to be blacklisted, thus affecting everyone.
I'm sure I have forgotten something :-)
Might be, but it sound doable. :-)
Yes, from a purely technical point of view, it is very much doable and I would be happy to set it up. -- Per Jessen, Zürich (9.2°C) Member, openSUSE Heroes (2016 - present) We're hiring - https://en.opensuse.org/openSUSE:Heroes