|
|
| Author |
Message |
janc
|
|
Staff Conference
| 
Jan 28 17:15 UTC 1996 |
I'm shifting the following discussion of changes to the staff conference
out of item 135, since I think it needs an item of its own.
-----------------------QUOTED FROM COOP #135--------------------------------
#261: by Mary Remmers (chelsea) on Sat, Jan 27, 1996 (08:06):
[...]
But, I am starting to see a valley here between staff and users. I've seen
this develop before, elsewhere, and I think it can be minimized by a
couple of little changes. Maybe.
(And this is where I get flamed) ;-)
The staff conference was meant to be for discussion of security issues.
That's how it was initially drawn and why it was considered necessary
it be a private conference. It shouldn't really be a place where
policy is pre-discussed (with non-staff Board members present) before
giving it a whirl before the users. It shouldn't be a place where
staff discusses *anything* but system security matters. Period. So I'd
propose the private staff conference be renamed the security
conference, only staff have access (not non-staff Board members)
and that the prompt which normally states, "Ok to enter this item?"
is replaced by, "Is this a security issue?".
Now, there is a whole lot of other non-security stuff that staff
needs to communicate, and I suggest that go into a staff conference
that is either totally public or at least readable by the public.
I don't suspect too many people are going to want to keep up on a
"What I did" staff log, but who knows? Anyhow, that way the users
can see what staff does with all their hard work. There is less
of a question of what staff does in private. There won't be an
appearance of secrecy. And maybe, just maybe, we'll head-off some
of the slowly growing sense of division between staff and users.
I wish we'd set it up like this from the first.
#263: by TS Taylor (tsty) on Sat, Jan 27, 1996 (13:02):
thankxx chelsea, that's an idea i can live with rather well.
any other takers?
#264: by Jan Wolter (janc) on Sat, Jan 27, 1996 (14:00):
I need to think about it. I've been campaigning (mildly) for some kind of
public staff conference for a while. I see a need for several kinds of
things:
- A completely private place to discuss security issues.
- A place where only staff can post. We maintain a "What I did" item in
the staff conference where we post descriptions of about every little
thing we did to the system. Most of it is really boring, but it is
helpful for staff to know what other staff are doing. Keeps us from
stepping on each other's toes too much. If we tried to do that in a
public conference where anyone can post, however, I'm afraid that very
quickly some little "What I did" topic would spin off into some huge
discussion, and swamp out the "What I did" item completely (we have
small bursts of that as it is). This could badly undermine the
usefulness for such items in the communication between staff.
- A public place where specific technical issues on Grex hardware and
software can be opened to general discussion, with all welcome to
participate.
But though I see these three different catagories of items, I think three
conferences would be one too many. I'd be inclined to stick with just
two, and leave things like the "What I did" item in the private conference.
This isn't ideal, but I think it may be the next thing to try.
#265: by Valerie Mates (popcorn) on Sat, Jan 27, 1996 (15:00):
Historically, overall, I'd say the staff does very well at minimizing the
discussions about non-security things in the staff conference, and keeping
those discussions here, in co-op, where they belong. Lots of topics briefly
crop up in the staff conf, and end abruptly, after very few responses, when
someone says, "This really belongs in co-op." At that point, the discussion
moves to co-op and is discontinued in the staff conference.
However, in the last 6 months or so, I've seen a steady increase in comments
like, "I should enter this in co-op but it's not a very important issue and
I fear it will be flamed to death there by some of our, um, more vocal
users."
In other words, some of our regular co-op conspiracy theorists are scaring
off the very types of discussions they'd like to see in the open. This
worries me. I'd really rather see those discussions held here.
(Also in the last 6 months or so, we've gotten a bunch of new staffers, some
of whom have entered items that might better have been better put elsewhere
than in staff. They'll learn.)
One other concern I'd like to see addressed is privacy issues. For example,
if a user manages to need 7 password resets in a row, or botches a .login
file, or does some other boneheaded thing, should that be posted in public?
I dunno. I don't think I'd personally mind having it announced if I needed
my password reset 7 times in a row, but I could see where other people might
not want that kind of information posted publically.
#266: by Steve Weiss (srw) on Sat, Jan 27, 1996 (20:57):
I definitely think that the "what I did" item belongs private. It names all
kinds of users names and it would serve no purpose to make it public.
On the other hand, I just entered an item in the staff conference about
progress on the terminal server (now that we might make some progress there)
and while it might have a few security issues around the edges, is mostly
material that would do no harm to be viewed publicly. It would be great to
let
the public see that item, but how can I do that? I can't afford to have
it be anywhere that non-staffers can post, so until we implement a
conference that can be read-only to the public I don't see how to do that.
We have been filling in the public on the Sun-4 in a separate item in coop
rather than providing access to the staff item, because we need that item
to
communicate among ourselves. I think staff does a bad enough job of
communicating amongst itself that anything which is detrimental to that would
do this system a disservice.
[...]
#267: by The Dharma Bum (kerouac) on Sat, Jan 27, 1996 (21:30):
prevoius message...SRW, what do you mean it would do no harm for the
public to see the item you refer to, but it would do harm if they
posted their thoughts? I dont know what purpose security wise a read-only
open staff related conf could serve? If this is information that
is safe to show publicly if edited right, what harm does it do to you,
grex or the issues involved if people are allowed to post their own
comments about it? A read only conf to display such items would be a
silly act of paranoia...
#268: by The Dharma Bum (kerouac) on Sat, Jan 27, 1996 (21:34):
Also there's no point to having a read only conf, for the purpose of
posting items but preventing discussion, because anything posted there
worth discussing would be brought up in one of the other confs.
#269: by Valerie Mates (popcorn) on Sat, Jan 27, 1996 (22:49):
Ja, I could definitely see putting the terminal server item in co-op,
or possibly in some new conference like what Jan suggested elsewhere,
where technical details about the system are discussed. A regular
conference that everyone can participate in.
#270: by Rob Argy (ajax) on Sun, Jan 28, 1996 (02:03):
Kerouac, the idea behind the "what I did" item being read-only is just
to keep drift down. If people wanted to make separate items to discuss
issues raised there, that would be fine; it wouldn't detract from the
function of the "what I did" item.
*If* the item were made publicly read-only (and I doubt it will be),
a companion item to publicly discuss the first item could be entered.
[...]
#271: by Steve Weiss (srw) on Sun, Jan 28, 1996 (03:04):
The harm comes from the staff's need to communicate with each other.
We use the staff conference to help coordinate our activities. I don't care
if people want to read some of that stuff. I certainly don't mind my
communications with Scott and others regarding the terminal server being seen
publicly. We're working on figuring out when we can meet. This does not
require limited visibility. It would fail to function as a way for staff to
coordinate if it filled up with comments from non-staffers.
It's very simple. We'd resort to mail if that happened, and we'd lose another
useful tool. I have no objection to someone copying out what's there. I'm
not
trying to hide anything, but I've got work to do and resent impediments to
getting it done.
AFAIC the "what I did" item is way off limits for public view.
So is linking items with the staff conference.
(I'm feeling grouchy, I guess.)
#272: by Rob Henderson (robh) on Sun, Jan 28, 1996 (11:43):
No, I'm definitely in agreement on the "What I Did" item being
kept private, simply because of the embarassment factor involved.
I know I'd feel horrible telling a staff person that I'd forgotten
my password if I knew that this fact was going to end up in an
item in Co-op. "Hey, robh forgot his password AGAIN! HA ha!"
Or that I'd accidentally deleted a file, or messed up my .login so
I couldn't log in, etc.
|
| 110 responses total. |
janc
|
|
response 1 of 110:
|
Jan 28 17:58 UTC 1996 |
I think we should start a public conference called maybe "garage" or some
such, whose purpose would be general discussion of grex-related technical
issues. Sort of a place for people who are interested in tinkering with
the system to hang out.
In many ways this would be more of a spin-off from "coop" than from "staff".
Some items like the "How to Cool Grex" item might well make more sense there.
Other things that have appeared in "staff," like discussion of the problems
with the "jumbo disk patch" and about how much testing we need to do on the
Sun4 before bringing it on line might be moved out. At the same time,
"garage" would fill something of the role of the the "sysop" conference on
M-Net, where people can ask questions or make suggestions about Grex's
software and hardware. It'd be a natural place to talk about changes to
programs like write and party, and for people who want to develop software
for Grex to air their ideas and get feedback.
"Garage" would not be a decision-making conference, in the sense that coop
is. "Garage" might discuss the relative virtues of different ways of
setting up an ISDN network connection, but the discussion of whether we
want and can afford one would remain here. Discussions about the range
and extent of staff authority would remain here. Policy-making stays here,
figuring out how to implement the technical side of policy goes there.
I don't, however, support quite as strong a restriction on the use of the
"staff" conference as Mary does. The "staff" conference certainly should
be the home of some security discussions, and there are also some privacy
issues. But I think with as large a staff as we have, it is very important
that the staff continue to have the conference available for handshaking
and dissemination of information among the staff. Beside the "What I did"
item, there are items giving a description of how to do things like clean
up the disk after a reboot, add a mail alias, create a conference, etc.
These things aren't secret. They arouse little or no discussion. They
function as a sort of manual for staff members. It's nice to be able to
find them when you need them, and not have them buried in a lot of other
stuff. I'd have no problems with copies of this kind of thing being posted
in a "garage" conference if anyone wanted to see it, but I would have a
problem with limiting the "staff" conference to exclusively security
discussions. It's role as a coordinating and reference center for staff is
very important.
On the other hand, I think we should be careful not to overdo the "all
security-related material belongs in 'staff'" rule. Frankly, almost
everything on Grex is security-related. It's amazing how seemingly innoculous
programs can become big problems if they are botched up. Almost any
technical discussion of how things work on Grex might mention something
that a devious person could notice and say, "Hmm...I wonder if I could use
that to break into root..." or something of the sort. Ideally, if we are
doing things right, it should be possible for a person to know everything
there is to know about Grex and still do no particular harm. We need to
figure out where the dividing line is. There shouldn't be very many
parts of the system that we need to protect by secrecy (because we know that
that is no protection at all). I'd say that the "kernal blocks" which
prevent non-members from accessing the internet, and possibly the "shadow
password system" are very much on the border. Maybe it would be OK to
specific details of their innards in public, maybe it wouldn't be so hot
an idea. I'd be inclined to say it would be OK, but I suspect some of
the staff would be very uncomfortable with that. On the other hand, I
think we shouldn't shy away from public discussion of the "disk bug" and
things like that.
|
arthurp
|
|
response 2 of 110:
|
Jan 28 18:58 UTC 1996 |
Wow, you mean if I delete a file by mistake I can ask staff to bring
it back for me?
|
steve
|
|
response 3 of 110:
|
Jan 28 19:56 UTC 1996 |
Garage is a good name for it. I agree there is a place for a
conference like this, and there isn't such a place right now.
There would be a lot of things that could be talked about there.
But there are other things that aren't, and I won't use it
for that.
I don't think the staff conference is a bad thing. When there
are specific things talked about there that shouldn't be, it should
be said. I haven't heard that very often, but I am hearing some
staff say that it has happened perhaps often, and that bothers me.
It sounds to me like there should have been more communications
about what shouldn't have been in staff at the time, instead of
this item. Thats what bothers me.
It bothers me becuase we're in a fishbowl. Most of you, including
most staff people don't seem to realize how many people have looked
at us, poked around and tried to find holes in things. The more we
talk about the workings of Grex in the open, the more we're going
to expose ourselves, in ways that we didn't know was going to be
a problem.
There still is room for garage however, so I support that. But
I predict that we're going to start talking about things that we
shouldn't, and I really don't know how much of a problem thats going
to be.
Remember folks: we give people access to more of things than
what, 96% of the "public access" systems out there? Maybe 99%?
Ann Arbor is really weird in this respect, with Nether, M-Net and
Grex here and all having aspects of openness that makes other
systems cringe. With that openness, comes the fact that a LOT
of people pass by here, looking for little holes. They get
found pretty quickly too.
|
steve
|
|
response 4 of 110:
|
Jan 28 20:27 UTC 1996 |
Something else to point out. I've recently discovered that there
are people who are reading the conferences via reading the raw files
from /bbs. I saw someone who's been testing the locks here do that
a couple of times now. I have no idea how many people do this, but
it certainly is a low-impact way of reading a conference, and in such
a way as to be almost undectable. So the participant command, or
counting the number of .cf files isn't quite as accurate as I'd thought.
|
carson
|
|
response 5 of 110:
|
Jan 28 20:39 UTC 1996 |
hmm... I used to read Agora in "observer" mode, and I think Robh still
does on occasion. is that similar?
|
janc
|
|
response 6 of 110:
|
Jan 28 21:16 UTC 1996 |
There is plainly an issue about what is and is not "security-related". I
don't think we are going to be able to write a rule for that, nor are we
going to get all the staff to see eye-to-eye on it. I'm sure some staff
will enter things in public that other staff are less than completely
comfortable with. Personally, I'd be comfortable with, for example, a
verbal description of how the sun-4 kernal blocks work and what they test
for, but not the actual source code for the kernal blocks. There is very
little I'd want to keep secret about the shadow-password system (it is, after
all, a publically available piece of code), but I wouldn't hand out source
to our local changes to it.
I do realize how often people "test the locks". I don't particularly approve
of such activities, but it doesn't alarm me either.
Consider Star Trek. Captain Piccard's Enterprise is a puzzling ship. It
claims not to be a ship of war, but a ship of exploration, diplomacy, and
discovery. True, in spite of this official mission, it is well enough armed
to be a fair match for ships that are ships of war. The thing definately has
teeth. But it is, in fact, not operated as a warship. When approaching
strangers, they do not immediately raise shields, but wait for some hint of
hostile action. They carry the families and children of the crew aboard.
On the surface this seems insane. After all, the ship comes within a hair's
breadth of being destroyed every other episode or so. They could hardly be
in any more danger if they *were* a warship. Only a fruitcake would want
their children aboard that thing. Why doesn't Piccard ever learn to raise
his danged shields sooner?
But there is, in fact, some sense to it. If they let their behavior be
dictated by their fears they would have to surrender their ideals. If you
hope to discover friends, you can't approach people with suspicion. It
takes courage and self-confidence, but if it doesn't get you killed, it
can pay off many times over.
The whole Grex ideal doesn't make objective sense. We shouldn't let people
on without validation. We shouldn't let them on for free. Doing so is
either incredibly stupid, or incredibly brilliant. We have to be careful
to avoid letting fear nibble away at our openness. We have to consciously
and consistantly push the envelope on how open we can be, in order to
balance our natural and unconscious urge to close up and close ranks in the
face of unknown dangers.
Yes, lots of people test our security in various ways. But (1) most of them
aren't really very hostile, (2) most of them aren't really very smart, and (3)
we're pretty sharp about setting things up right in the first place, and
responding effectively to problems. We need to have the courage and
conviction in our ideals to not allow these pathetic people to drive us into
taking a predominantly defensive stance.
|
janc
|
|
response 7 of 110:
|
Jan 28 21:33 UTC 1996 |
Two responses slipped in. I don't see how reading conferences by reading
the raw files is even the slightest threat. Closed conferences and scribbled
responses can't be seen that way. You can access anything or do anything
that you can't do via picospan. It's not a accident that the files are
readable. It's a deliberate design features. On M-Net we used to set up a
"hidden conference" partly as a spur to encourage people to figure out how
the conferencing system works so they could find it and get in.
When I was younger, I used to poke around systems a lot too, purely out of
curiousity, trying to figure out how different parts of the system worked.
That most definately included security. I'm sure one of the first things I
did when I first got on M-Net was to scout around and see if I could find any
obvious flaws in the system security. On the half dozen occasions where I
did find security problems (not on M-Net or Grex), I simply mailed a
description of them to the system staff. I did it partly out curiousity,
partly as a challenge, partly out of a desire to be helpful, partly because
if a system I'm using has sloppy security, I want to know about it. I'm
sure most of the staff members have done the same.
It's OK to keep an eye on people doing such things, but we shouldn't
automatically presume they are hostile, and we shouldn't let it get us
feeling defensive.
|
kerouac
|
|
response 8 of 110:
|
Jan 28 22:19 UTC 1996 |
Query: Maybe a solution, if this is technically possible, would be to
offer an edited "read-only" version of the staff conf. This could be called
"staffpublic" and would allow for items from "Staff" to be linked over,
and offered for public view, but would also allow the fws to have editorial
control over what items from "staff" are seen. Any material deemed to
be a security risk could either be deleted from the item in question, or
the whole item could be flagged and not linked. If a response to a linked
item reveals sensitive info, it can be expurgated from "staffpublic", or
if the drift becomes dangerous, the "staffpublic" version can be frozen.
By making "staffpublic" readonly, it ensures the conversations will still
be entirely among staff. This seems like a fair compromise and would help
limit any unneccesary suspicion and paranoia about staff activities.
|
steve
|
|
response 9 of 110:
|
Jan 28 23:28 UTC 1996 |
Wonderful. So then staff has to always read the things that are
in the items that will be linked, to make sure that noting sensitive
will get out. This presents another load (drain) on the people here.
Are people so mistrusting of us that they think this should be done?
|
carson
|
|
response 10 of 110:
|
Jan 29 00:00 UTC 1996 |
I'm not, but I think I've always been in the minority opinion. 8)
|
ajax
|
|
response 11 of 110:
|
Jan 29 00:38 UTC 1996 |
STeve, you're pretty touchy about this topic...got something to hide? ;-)
By now, a number of proposals have been made, so I'm not sure which "this"
you mean by "think this should be done." I like Mary's "convert 'staff'
to a 'security' cf" idea, and sorta like Jan's 'garage' idea, but I don't
like kerouac's edited fishbowl idea, unless he's volunteering to be editor!
There may be a little mistrust, but probably more curiosity - people
don't know what's being hidden...posting an item list would probably
satisfy most folks that the staff cf is just boring tech & security talk.
If Mary's comment about policies being "pre-discussed" is more than
fictitious, then mistrust might be justified, but I give the benefit
of the doubt that it's not.
For non-security tech discussions (one was mentioned about terminal
servers), keeping it secret might keep out the riff-raff, but it also
keeps out participation from people who might offer help or useful
suggestions. The "cooling grex" item, while it hasn't yielded any results
yet, garnered some useful (I think) input from non-staff participants.
|
steve
|
|
response 12 of 110:
|
Jan 29 02:04 UTC 1996 |
If I seem touchy, I'm sorry.
I just see that we're going to A) make more work for staff here
by making "open" things for people to read and/or B) we're going to
let something slip becuase of this and really screw ourselves over.
|
scg
|
|
response 13 of 110:
|
Jan 29 03:36 UTC 1996 |
Reading through the staff conference, I've noticed a number of times where
something has been being discussed, looking perfectly ok, and then somebody
will do something which somebody else will realize opens up some security
hole. I really like the idea of the fishbowl conference in concept, but I'm
scared of situations like that. What if a security hole gets spotted by
somebody who's not so trustable. I'd like to see public discussions of a lot
of things, but we need to tread very carefully. I know that there are a lot
of trustable users here who want to be able to read through the staff
conference and see what's going on. I used to be one of them. The problem
is that with them, we would also be letting in those who aren't as trustable.
|
rcurl
|
|
response 14 of 110:
|
Jan 29 07:39 UTC 1996 |
I favor a closed staff cf in which they discuss and coordinate their staff
activities. I also favor an open "garage" ("shop"? - some heat would be
nice in winter), for most system hardware discussions. I have no problem
whatsoever with some security for the space in which personal and security
issues can crop up unexpectedly but necessarily. Its a small price for a
large benefit - and staff members are sensitized to not getting far into
discussion that should be in an open cf - "take it to coop" is said many
times.
|
janc
|
|
response 15 of 110:
|
Jan 29 08:32 UTC 1996 |
I don't think this is a question of people not trusting staff. I'm advocating
this, and I certainly trust staff. I've never seen any real abuse of the
staff conference.
I'm concerned about some possible trends that I think I see just the very
beginings of that could potentially be very harmful to Grex. Nothing serious
has happened yet, and maybe nothing serious will happen, but I think we
need to be alert.
We would all like to see this system run as democratically as possible.
Issues of system integrity and security can be a sort of Achilles heal of a
democractic virtual community. Certain information and access must be
restricted to a small set of knowledgable, trusted users. Staff operations
are an area of secrecy and limited democracy on a generally open and
democratic system. This is unavoidable. We can't be public about everything
we do, and we can't elect staff members or submit all their actions to vote.
There are lots of organizations like that within real-world democracies too.
The CIA, the Army, etc. And necessary though they are, they are also a
constant danger to the democracy as a whole. When democracies go bad, the
poison often spreads through some such organization that starts to interpret
it's mission more and more broadly.
So far, Grex's staff has done very well. But I see a few things starting to
happen to us that concern me, and which I think we need to be careful about.
- More and more distrust of outsiders. The cumulative effect of all
these attacks on system security has been to make us increasingly
suspicious and untrusting. Even if this is justified, it is still
a bad thing. This is just the way institutions like the NSA start to
go bad. You concentrate on threats because that is your job. Soon
you start seeing nothing but threats, and you feel more and more that
your job requires more and more extraordinary actions to carry out.
More surveilance, less regard for privacy, less regard for law.
I haven't seen any Grex staffer really step over the line, but I have
seen things that occasionally make me just a bit uncomfortable. The
increase in the level of paranoia between now and the last time I was
on staff is dramatic. Sure, the last time I was on staff was seven
years ago on M-Net, and the world has changed a lot. But I think the
experience of being burnt time and time again has also changed people,
and I think there is danger in that direction.
- More staff solidarity. People in groups like staff tend to develop
loyalties to each other that can overwhelm their loyalties to the
larger group. I see some of this happening on the Grex staff.
When brighn and selena attacked popcorn over the party settings, I
joined several other staff people in her defense. I think the change
was a good one, and that the complaint was excessive, but admittedly
the change was excessively abrupt. Honestly, the fact that Valerie
is my friend, and Selena isn't, had something to do with my wanting
to defend her. Beyond that, I feel like we staffers should stand
behind our own when one is attacked. I see staffers disagreeing over
things in staff mail and the staff conference, but then presenting a
more united face in public.
This isn't evil. All good people do this quite naturally. You have
to be a bit nasty not to. But it is dangerous. It is not a good
thing for staff to get into the habit of closing the ranks when faced
with criticism. We start slipping into a "them against us" mentality.
This is very bad. People like selena, kerouac, tsty, and brighn aren't
against us. They want Grex to work too. We can not and should not ask
them to stop criticizing and complaining. We need to get better at
accepting even the nastiest criticism in the spirit it should have
been meant, without allowing ourselves to get defensive about it.
The staff exercises power. It is extremely difficult to exercise power
well in the long run. It takes more than good intentions. It takes a
commitment to ideals that goes beyond maintaining your immediate sense
of security. It means sometimes allowing wider loyalties to override
personal loyalties, something against all human instinct.
Grex staff is nowhere near the danger zone, but I still see trends in that
direction. I think we need to push ourselves to greater openness, and
greater trust of our users. I think shifting more of our staff discussion
into public arenas is a good step in that direction.
|
srw
|
|
response 16 of 110:
|
Jan 29 08:33 UTC 1996 |
I have no objection to a garage conference, either. Only time will tell
whether it is useful, but that is true of any new conference.
|
srw
|
|
response 17 of 110:
|
Jan 29 08:40 UTC 1996 |
Obviously 16 was not in reference to 15, a slip-in. I agree with #15 mostly.
I hope everyone realizes that when staff gets together
for a meeting, or exchanges mail, that there is rarely agreement. Each of us
has our own opinion about most things. But we are at the same time a team.
If we stopped functioning like a team we would simply stop functioning.
It is normal and IMO not-at-all dangerous for staff to avoid criticizing each
other in public. We do it plenty in private, trust me on this.
|
davel
|
|
response 18 of 110:
|
Jan 29 12:34 UTC 1996 |
When hardware/system issues have come up in coop - which happens more often
than this discussion might suggest - staff members have not been slow to jump
all over each other's suggestions. I think that trying to separate purely
technical issues from policy issues by putting them in another conference is
probably a really good idea, but I foresee a lot of trouble making it actually
work that way.
I'm also concerned about the tendency for seemingly innocent technical
discussions to sprout security-issue branches, but I think staff can handle
that well enough.
|
rcurl
|
|
response 19 of 110:
|
Jan 30 08:06 UTC 1996 |
Perhaps there should be less overlap between staff and the board? The
board sets policy and staff implements it. When they are combined there
really is a lot of concentrated power - staff discussions can more
readily become "closed" board discussions.
|
chelsea
|
|
response 20 of 110:
|
Jan 30 12:08 UTC 1996 |
I very much agree with Jan's assessment in response #15. This discussion
in not intended to be a slap of staff's hand. Not at all, but if it's
taken that way that would be a real pity, because there is an opportunity
here to take a larger look at what we started out to do and whether
we've done it right. I'd sure hate to see defensiveness get in the way.
Grex prides itself on being democratically run, with as much of the inner
workings made available as possible, and welcoming of user participation.
Great concept. And how we structure the thing should work toward that
goal if we're serious about the mandate. The staff conference as it's now
set up relies on the staff and Board to constantly be policing themselves
and each other to prevent drift into policy issues and discussion of
people and politics that really don't belong in a private conference.
Now, we all know how drift happens, innocently, without malice. It's
probably impossible to stop entirely, but in the case of the staff's need
for private security discussion the system could be changed some to
facilitate this yet come even closer to the goal of an open, co-operative
administration.
I'd change the Staff conference to the Security conference, changing
prompts to serve as reminders and maybe minimizing the need for staff to
keep each other consistently in line. Everything that's not clearly
security related should go into a read-only public conference called
staff.
The issue over "What I Did" type items is maybe overblown. I don't really
see it as a humiliation issue requiring secrecy when staff resets a user's
password, or fixes a mail problem, or whatever. Would users
mind this information being readable? Have we asked them? But no matter,
is it critical for the names to be mentioned in the item? I mean, *really
critical*? Staff is a bright group and I bet there would be a way around
this if they thought the goal was worthwhile. If it was something they
wanted to do.
*Discussions* regarding specific users (unrelated to security issues)
simply don't belong in a private staff conference. If it's a specific
behavior being discussed, then talk about the behavior and don't use
names. That too is good policy. And if the discussion is about unwelcome
behaviors and what's appropriate intervention then, as with all items
in the read-only conference, if anyone (staff or user) wants two-way
discussion, an item is entered in co-op.
There is concern over publicly readable discussion slipping into security
issues. Well, I trust the staff to not enter security issues in a
publicly readable conference. That they would take to the security
conference. I don't see the issue here. Again, the overall structure
should favor openness instead of secrecy - one of our highest priorities.
I'm stumped to come up with a compelling reason, again in light of our
goals, to have non-staff Board members participating in private
administrative conferences. If the staff wants Board input on security
issues they go into private session at a Board meeting and ask for policy
direction. All other Board business should be done in public. That
too is simply good policy. If the staff conference is made readable then
non-Board staff would be able to read it like anyone else who was
interested. Non-staff Board members shouldn't have posting privileges in
a readable staff conference and shouldn't have access at all to the private
security conference.
Had this type of structure been put into place long ago I believe staff
would have functioned just fine. Folks wouldn't now be seeing this as a
punitive move. There would have been more of a natural division of
responsibilities between staff and Board. Users (and staff) could have
benefited from sharing more information on how Grex works. And, most
important of all, what we say we want from Grex - openness, user input, a
minimum of secrecy and cliquishness - would be backed up by our policies,
even if that takes a little extra effort.
My 2 cents.
|
steve
|
|
response 21 of 110:
|
Jan 30 16:44 UTC 1996 |
The reason for having the board people able to read and discuss things
in the staff conference is really very simple, Mary. It's to keep the
board people in the loop for problems as they start to arise, and for
security issues, so the board knows why something was done.
By keeping the board coupled to the staff the board has a *much*
better idea of whats going on there. It probably also makes for more
non-staff people able to see whats going on there, and to raise flags
if something questionable is going on.
But more importantly, at least in terms of what I hope happens with
the board in staff, is that the board can see whats going on. *That*
is something that other organizations, technical and non-technical alike
seem not to do. I can think of many, many, many problems with the people
doing the work were far removed from the board people, and then, when
something came up the board was clueless as to the little details and
had to be educated on things before they could make intelligent decisions.
I really really really really hope that we don't decide to change
this aspect of the way we run things. I am so *very* tired of places
(organizations) that have what I see as an artificial seperation between
their people that do things and their board. It's probably in conjunction
with RRO, now that I think about it.
If there are incidents that present or past staff or board people
think went on in the staff conference that shouldn't have, fine--let's
talk about them. I'm certainly not imune to the problem of starting
to put something in staff and then later moving it to coop. But I
don't think this means the system is broken. Let's deal with the
things that need fixing, and keep what I think has worked very well
as it is, with whatever needed modifications to make it even better.
|
srw
|
|
response 22 of 110:
|
Jan 31 07:34 UTC 1996 |
It is absolutely essential for the staff to identify to each other what they
have done in extremely specific detail. this necessarily involves identifying
users and reasons, etc. This information should not be made public. It
currently appears in the staff conference, and that is where I believe it
belongs. If staff is denied that vehicle for that communication, then I
believe staff will use mail for that purpose, which would be a big shame, IMO.
I agree with most of the rest of what Mary said, though. Including not seeing
any real benefit of the board being able to read that conference. I don't
think it does any great harm, though.
|
adbarr
|
|
response 23 of 110:
|
Jan 31 12:53 UTC 1996 |
Is the staff responsible to the board, in every sense? If not, why not?
Why is staff trusted with security issues and the board not trusted? It seems
to me that staff has the responsibility to inform the board, explain the
issues, and abide by the wishes of the board in resolving the issues. That
does not mean making sensitive and dangerous security issues public. It is
not at all clear to me who staff works for from what I have read in this
discussion.
|
steve
|
|
response 24 of 110:
|
Jan 31 14:15 UTC 1996 |
I've always thought that staff as a whole answered to the board.
|
