|
Grex > Coop11 > #84: outgoing internet access for non-members | |
|
| Author |
Message |
devnull
|
|
outgoing internet access for non-members
| 
Mar 14 08:34 UTC 1999 |
I don't really remember exactly where the discussion of allowing people
who aren't paying members outgoing internet access from grex, but it
seems to have died out without there being any good reason that I remember.
Anyway, I'd like to make this motion:
Outgoing internet access from grex will be allowed to any Michigan
resident who provides suitable proof of identity. The exact definition
of `suitable proof of identity' will be determined at the discression of
the board of directors.
|
| 127 responses total. |
mdw
|
|
response 1 of 127:
|
Mar 14 18:18 UTC 1999 |
This puts us in direct competition with all of the local ISP's. Are you sure
you want grex to be in that business?
|
pfv
|
|
response 2 of 127:
|
Mar 14 18:58 UTC 1999 |
re: 0
Are you sure that's a good idea?
You've got 70+ folks incoming on telnet, ftp and lynx. Talk,
party and whatnot..
Are they supposed to be "outgoing" with Telnet? Lynx? IRC?
|
remmers
|
|
response 3 of 127:
|
Mar 14 20:04 UTC 1999 |
All users have access to outgoing http via lynx (or anything else that
uses the http protocol). Only members have access to outgoing telnet and
ftp.
Re resp:0 - Why Michigan, specifically? People in Michigan who are a
long distance phone call from Ann Arbor need an ISP to get to Grex,
which usually means that they already have access to the services which
you propose to provide for free. It makes more sense to talk about
providing free outbound services to validated users in Grex's local
calling area. That would make services available for free that people
currently have to pay for. Since Grex is a 501(c)3 organization with a
charitable mission, this is certainly something worth discussing.
If we did this, we'd be in "competition" to ISP's to an extent. But we
already are, to an extent - we offer free internet email and
(non-graphical) web access. Presumably we'd never be able to offer the
level of service in terms of bandwidth and resources that a commercial
ISP would have, so any competition would be at most partial, just as it
is now.
I'd love to see Grex do this if it has the resources. But does it have
the resources - computing power, staff time, money? That's the real
question.
|
cmcgee
|
|
response 4 of 127:
|
Mar 15 00:32 UTC 1999 |
As one of the people who would benefit from this, I suggest that we _not_ do
it. Grex does have ongoing financial needs. And far fewer people abuse any
service when they have to pay a nominal fee for it. I see no reason to
suddenly change Grex into a free service by unlinking the two most
"abuse-prone" commands from membership.
The benefit is so minor in comparison with the new demands on volunteer time
that would ensue, that I think we should leave them as that small nudge that
helps people decide to support Grex.
|
steve
|
|
response 5 of 127:
|
Mar 15 01:33 UTC 1999 |
As much as I'd like to be more open, I don't think thats a good idea.
Anyone who isn't a local call to Grex is already using telnet or Lynx
to get here--so why offer telnet to them? I don't see any real gain
for this. I do see a downside in having to verify that they are
indeed from Michigan, etc. And, not to sound like a broken record,
I'm still very wary of little vandals trying to use us as a place
to telnet from.
We're offering what is the important thing, anyway: Lynx. Telnet
is a dying protocol.
|
mary
|
|
response 6 of 127:
|
Mar 15 03:18 UTC 1999 |
I'd like to see the only difference between members and non-members
be the right to a membership vote. I really don't like the idea
of tiered access, where those who pay get perks for their money.
If the system resources simply can't handle our being able to
offer something to everyone then I'd rather it not be offered at
all. But I know this is not the way most folks see it. I also
suspect that if Grex were designed today, by the existing members,
that it would probably look a whole lot different than it does.
It's real tempting to go the safe route, looking for the worst
in folks and being unwilling to take chances, and looking toward
membership rewards as a means of keeping our finances comfortable
and our club secure.
I think we should try opening outgoing telnet to all verified
users. If there are problems we address 'em. If it simply
doesn't work we go back to the way it is now. But we would
have given it a try.
|
steve
|
|
response 7 of 127:
|
Mar 15 03:40 UTC 1999 |
Why? What does it gain us?
Every day, we get several, and at times litterally dozens
of people who take out accounts here on grex and the first
thing they do is see if they can telnet back out again.
There is *no* legitimate reason for this. Ar first I was
dismayed by it, but now I am used to the fact that there are
*an incredible number of people who try to use us for cover*.
As I have said before, if we open this up we're going to
open ourselves up to problems. Speaking as one who already
deals with problems we do not need more of them. Especially
when we're talking about something that doesn't help out the
vast majority of people any more. The web is becoming the
net, and we offer Lynx access to anyone. That is important,
and I'm proud to offer it. I really see no reason to offer
something with most people won't use, costs us something in
terms of administration and opens us up to problems.
|
other
|
|
response 8 of 127:
|
Mar 15 03:56 UTC 1999 |
the crux then seems to be:
equal access for all verified users
vs
risking grex developing a reputation for harboring
troublemakers on the net.
Although I certainly think STeve's point is legitimate, I also think
that if we can clarify an appropriate standard of user verification, we
will greatly limit the potential problems Steve is concerned about.
Essentially, eliminating the anonymity will discourage the bulk of the
troublesome elements.
The next tier of concern is grex's ability to handle the traffic flow
increase this move would potentially represent. As stated previously,
offering the access to users outside grex's local phone service area
would seem redundant, thus the most likely beneficiaries of the move
would be relatively few in number. Does anyone seriously suggest that
the additional traffic from this area alone would significantly burden
our resources? If so, on what basis is the conclusion drawn? Share the
information for the benefit of the discussion.
Last is the potential loss of membership dues revenue that tying access
to membership tips the scale just far enough to motivate. Can we get
any kind of estimate of what this potential is?
Let's gather the real data (i'm requesting those with the appropriate
tools to do so, since i cannot) and revisit those elements of the
discussion forthwith.
|
aruba
|
|
response 9 of 127:
|
Mar 15 04:28 UTC 1999 |
It's hard to say how many members are members just so they can telnet. I know
of one, but there may be more.
Consider this, too: If someone sends in ID to become verified, how long is
the verification good for? People move around, so who knows if an address
from, say, 8 years ago would be enough information to track someone down with.
Do we allow people to send their IDs as GIFs? That would certainly make it
a lot easier to become verified (at least for some people), but it's also
easier to forge a GIF than a photocopy.
I'm on the fence about this one.
|
devnull
|
|
response 10 of 127:
|
Mar 15 04:51 UTC 1999 |
What the FSF used to do for verification of guests was to require that they
send a self-addressed, stamped envelope to the FSF, and then someone (usually
Tami Friedman) would create the account, and snail the password back. This
made it fairly difficult to maintain anonymousness. I think if grex wants
to allow non-members outgoing access, mailing something to such users via
US mail in some way that they have to successfully recieve the snail mail
before they get outgoing access is likely to work well. This is a bit
difficult for grex, since the account generally already exists; I suppose
we could send mail saying that about seven days from the date we send the
mail, we will change the password to something that we include in the snail
mail, and simultaneously enable internet access for that account.
The FSF had about 1200 guest accounts, and I bet fewer than ten of them
ever caused problems. And the few problem cases wouldn't likely cause any
more problem for the grex staff than the average eggdrop user on grex.
Most vandals want to be anonymous. A good authentication procedure will make
them not bother to try to send the paperwork to get outgoing access on grex.
The argument about competing against ISPs is a valid one, and grex probably
doesn't want to get very many more phone lines. I think grex ought to quite
delibrately offer a level of service on the dialups which is lower than
what ISPs offer; this can be done by keeping the dialup pool at 14.4 forever,
or not offering ppp, or whatever. Clearly, economics make it impossible
for grex to provide the level of service an ISP does unless grex charges
everyone substantially more than the current membership dues.
If telnet is really dying out, as someone suggested, then the increase in
load this will create is irrelavent.
The choice of `Michigan' was pretty arbitrary; I'd be happy to change it to
be the case that the people who are elibigable are people who live where
grex is a local phone call.
I assume that outgoing access on grex is basically something we want to
offer to people who can't afford a $20/month ISP account; I suppose some of
them can afford a $6/month grex membership, but not all of them. (It also
seems backwards to me, now that I think about it, that we've structured
things so that the more affluent people spend less on membership than the
poor; the poeple who pay annually pay $5/month, and the people who pay
monthly pay $6/month. I realize that this is intended to make aruba's life
easier, but it is wrong to penalize the poor. Also, the cost of 11 $.33 stamps
would probably be enough to motivate me to contribute annually (or at
least quarterly) anyway.
|
devnull
|
|
response 11 of 127:
|
Mar 15 04:58 UTC 1999 |
Re #9: I'd say we let verification be good for forever. The number
of poeple who are going to become verified, wait N years, and then cause
trouble is sufficiently small that the staff can address it when it
comes up. I'm confident that we'll have a lot more trouble with
the outgoing http that we offer everyone than we'll have with people
whose physical location becomes unknown.
Consider, too, that there's a certain age group for IRC script kiddies;
it's around 14-16. Anyway who's going to cause problems will likely
grow up before they succeed in moving away without a trace.
|
devnull
|
|
response 12 of 127:
|
Mar 15 05:01 UTC 1999 |
OK, here's the new proposed text of the motion:
Outgoing internet access from grex for all protocols will be allowed
to anyone in the local calling area of grex's modem pool who povides
suitable proof of identity. The exact definition of `suitable proof
of identity' will be determined at the discression of the board of
directors.
|
mdw
|
|
response 13 of 127:
|
Mar 15 10:58 UTC 1999 |
Many freenets do "snailmail" verification before they create an account.
The usual situation is that whoever it is that processes these forms is
snowed under an avalance of the things.
What, exactly, do you hope to accomplish by this change, and how does it
contribute to grex's mission in life?
|
cmcgee
|
|
response 14 of 127:
|
Mar 15 12:26 UTC 1999 |
In response 8, a long list is laid out that never once addresses the real
burden on grex: Adding tasks to the already too-busy staff to do list.
These tasks are grass-fire type tasks, that have to be addressed as soon as
they happen. They are the ones that set us up for the "When is x going to
be done? -- As soon as staffer y finds some spare time" complaint.
Unless we have an avid volunteer, who has the time, Right Now, to take on the
new administrative burden of verification, snail mail, and follow-up on abuse,
I don't think we should make this change.
|
krj
|
|
response 15 of 127:
|
Mar 16 08:52 UTC 1999 |
Didn't we just have a big go-round on this topic in the Coop conference
a couple of months ago? Could someone find it and post a pointer to it?
|
aruba
|
|
response 16 of 127:
|
Mar 16 14:50 UTC 1999 |
Item 49 is about the same subject.
|
dpc
|
|
response 17 of 127:
|
Mar 16 14:53 UTC 1999 |
I'm with STeve on this.
|
janc
|
|
response 18 of 127:
|
Mar 16 16:14 UTC 1999 |
Mixed feelings. I kind of like the concept of non-tiered access. I
don't think the computational/bandwidth/policing burden would be bad. I
do think there is some administrative cost.
I like the two-way snail-mail validation process as a concept.
Something like:
- User sends a letter to Grex, with ID, the name of his login and
a return address.
- We send a letter back to the return address, containing a code
word.
- User runs a command "enable-inet" which prompts for the code word
(different for each user) and turns on internet access.
Problem is, who's going to read the mail and generate the codewords and
do all that. Yick.
|
keesan
|
|
response 19 of 127:
|
Mar 16 19:50 UTC 1999 |
How many dial-in users seriously cannot afford $6/month? People in India
cannot afford this, but Americans who have access to a phone line (which costs
more than $6/month) and a computer not being able to come up with $6/month?
What do people need telnet for that lynx will not do? Can you telnet from
the library computer?
|
scg
|
|
response 20 of 127:
|
Mar 16 20:54 UTC 1999 |
I don't think this would put Grex in competition with ISPs, because the level
of what's being offered is very different. Most ISP customers wouldn't know
what to do with a Unix shell account, or a non-graphical web browser.
At the same time, though, I'm not wild about putting a lot of Grex resources
towards doing a not very good job of providing a service that is commercially
available very cheaply in this area. If I were really concerned about not
having different access levels for members and non-members, I'd be more
tempted to turn off telnet access for members than I would to turn on telnet
access for non-members.
|
steve
|
|
response 21 of 127:
|
Mar 16 22:03 UTC 1999 |
There are indeed people in the aa area who cannot afford $6/mo. Or they
can, but might give up something like bus fare to do it. Remember, not all
the folks around here are at the upper edges financially.
However, in this day I simply do not see many reasons for telnetting out
for most people. Back in the summer when Damon and Staci (my kids) were
haing around at the public library a lot, they knew how to telnet because
of Grex but it seemed that few others did, 'till they showed others Grex.
Not even the librarians knew, and were puzzled 'till Staci showed them
what telnet was.
These days, there is very little that telnet does that Lynx (web) access
will not do, better. Grex (and M-Net) is in the very distinct minority in
having the telnet traffic that we do.
I would like a flat-access model too, but there are some realities tht
get in the way of being completely true to it, so we do what we can, which
is still quite a lot. I don't think our principals are being hurt because
of this--not when telnet is dying and the web is taking over.
|
mdw
|
|
response 22 of 127:
|
Mar 17 01:10 UTC 1999 |
I don't think it's really accurate to say "telnet is dying and the web
is taking over", or that "there is very little that telnet does that web
access will not do better". Telnet usage isn't growing at the same rate
as web access, but that's because most people aren't using the internet
to do programming or general purpose computing, they're using the
internet to browse information. Telnet very definitely still has its
place: if you want to do serious programming, remote system
administration, etc., you can't really do this via your web browser.
But the # of people doing serious programming and remote system
administration is not growing nearly as rapidly as the number of
non-computer type people is.
|
cmcgee
|
|
response 23 of 127:
|
Mar 17 01:19 UTC 1999 |
Ack yes, leave me telnet! I use it a lot.
|
devnull
|
|
response 24 of 127:
|
Mar 17 04:04 UTC 1999 |
What janc describes in #18 seems like exactly the right idea. Assuming
enough staff time (which I know may be a bad assumption), it ought to
be possible to write a program which whomever is processing the snail
mail can run; they enter the login name, it perhaps displays the login
name and full name, and asks for a yes/no confirmation, and then the
program picks a random code word, records the code word in a file, and
prints it on the screen. Person writes code word on paper, and mails it off.
At the moment, my feeling is that the only problem anyone has brought up
that I have any concern about at all is the question of whether there is
a volunteer to process this mail.
|