You are not logged in. Login Now
 0-2   3-27   28-42        
 
Author Message
scholar
The problems with validation Mark Unseen   Jan 4 18:55 UTC 2010

For a number of months, Grex has required people to be validated after
creating their accounts before they can access the system in a useful way.

This was intended to prevent people from using greater access to abuse the
system.  However, it seems that this purpose is not being met:  at the recent
board meeting, one of the validators mentioned that on more than one occasion
a notoriously troublesome user had successfully been validated.  With 
validation as it is, it seems to me that any attacker with enough 
knowledge and motivation to cause harm to Grex would also have enough 
knowledge and motivation to get past validation.

There are many downsides to validation.  It eats up volunteer time.  It also
acts as a barrier to new users, who now have to discover the process, comply
with its conditions of entry, and wait for someone to make a decision.  A
potential new user could justifiably view this process with some uncertainty,
since it requires them to wait an indeterminate amount of time, meet uncertain
conditions, and the validators may seem inaccessible.  Given these added
barriers, new users are likely to go elsewhere.  Additionally, it might stifle
open conversation; I think that over the years many users have created new
accounts to make comments they did not want tied to their regular identities,
but validation makes this more difficult.

Given that the current system of validation is ineffective, and that it 
has many downsides, I think it should be disabled.  If someone wanted to 
harm Grex, they would have done it by now, since it would be trivial to 
simply lie to get an account validated.  At the least, I think Grex 
should remove the procudure on a trial basis; it's easy to remove, and 
it's easy to put back up if system abuse rises.
42 responses total.
tonster
response 1 of 42: Mark Unseen   Jan 5 02:41 UTC 2010

I agree.  I don't think the validation system is really the deterrent
it's designed to be, and I think it does more harm than good.
kentn
response 2 of 42: Mark Unseen   Jan 5 03:31 UTC 2010

It's not good if it chases the honest people away.  It's also not good
if it lessens the Unix experience for those wanting to learn more about
it.  When you come upon Unix for the first time, the last thing you
need is to jump through hoops in order to do an ls (most people are
confused enough).  If it is not a deterrent to the vandals, then we
should evaluate whether it is doing more harm than good in the long
term.  Still, no system is perfect and I'd hope any alternative isn't
worse.  Dealing with people trying to bring the system down also takes
staff time.
 0-2   3-27   28-42        
Response Not Possible: You are Not Logged In
 

- Backtalk version 1.3.30 - Copyright 1996-2006, Jan Wolter and Steve Weiss