Agenda for Grex BoD meeting: Sunday, May 20, 2007, 7 PM

May 10 15:43 UTC 2007

Agenda for Grex BoD meeting: Sunday, May 20, 2007, 7 PM

        1. Arrivals 7:00 PM
        2. Opening Gavel Tap 7:30 PM
        3. Treasurer's Report
        4. Staff Report
        5. Old Business
           *Surplus - what do do with it.
               1. Spam Filtering (being researched by staff)
               2. New Motherboard/Memory (being researched by staff)
               3. RAID Disks/Bigger Disks (being researched by staff)
           * Internet Access Policy and Classes of Users (please see 
             coop:407 for discussion)
        6. Schedule Next Meeting
        7. New Business
        8. Closing Gavel Tap

The meeting will be held at 208 N Grove St, Ypsilanti, MI.  All are
welcome. 

response 2 of 23:

May 18 20:49 UTC 2007

PS: Here's a list of the users who are (a) immortal, and (b) have not
logged in within the last five years:

abby            dorian          host2           leann           rogue
abrahamk        draken          host3           livi            sarrica
adbarr          dynamo          hross           lkt             scgtest
anasazi         ec              htp169          lotte           sgs
andrewb         ejkloos         indigo          matrixg         simcha
autoresp        fes             info            meena           sisiro
baby            field           info-f          mfeo            talon
bad             fire            info-g          mike            threeps
blh             fish            insanity        morel           truffle
blueyes         freida          jasmine         mraina          uli
bsa466          fwdehaan        jbrennan        msqladm         user6122
cardding        gandolf         jedisg          mutt            wfh
chr             garima          jhurmanf        mysql           willard
cicero          gregc           jjc             nissa           wolfe
confetti        grexlogo        jmc             nsiddall        wolfmage
crude           grexohio        kendra          pashok
dadroc          grrwoof         kep             precious
des             hawkeye         kinnari         quail
dolly           host1           ldiot           regordon

response 4 of 23:

May 19 16:55 UTC 2007

I would tend to agree with gelinas. I think the incremental cost of
keeping those accounts open is significantly smaller than the value of
them having true IMMORTAL status (in big, capital, underlined letters,
in italics, even). One presumes that the threshold to get that status
was nontrivial in its first place, so why diminish the social value of
what they did to earn that and stuff? 

response 6 of 23:

May 19 20:42 UTC 2007

Does this list bother you?

response 8 of 23:

May 20 18:09 UTC 2007

Regarding #6; Not in the slightest.  In fact, I don't know the vast majority
of people on it.

However, I'm just curious what to do about people who clearly aren't coming
back, for two reasons that I can think of: 1) Is it a security risk to leave
old accounts around that are accessible?  2) What if someone else wants an
older login name, that hasn't been used in 10-12 years?  Should we tell them
`no' just because someone has the login name, even though they aren't using
it, and aren't likely to ever use it again?

response 10 of 23:

May 20 19:30 UTC 2007

Re the last question in 8 above:  Yup; that is, in my opinion, the real
purpose of the immortals list: to prevent loginids being re-used.

As for the first question, if there is a security risk, we could disable the
accounts, or switch them to a shell that tells the user to contact the staff
and then logs out again.

response 12 of 23:

May 20 20:33 UTC 2007

The only harm I can see is that people may want to use those particular
logins for themselves. Generally, I think that they can probably find an
acceptable alternative without too much trouble though. 

response 14 of 23:

May 21 05:05 UTC 2007

I suspect what Dan is getting at is that he'd like to phase out the old
algorithm that Grex used to use for encrypting passwords, and that can't
ever be completely done while there are old accounts around whose passwords
are encoded he old way.

If we can find a thecnical way around that issue, then that's fine, but I
have to agree with the general chorus here that being in the immortals list
should mean that you never get reaped.  If there are only about 300 people
on the list, then I can't see how it's any drain on the system at all.

response 16 of 23:

May 22 02:37 UTC 2007

For security reasons, I could see locking the accounts and setting an
error message telling them to email staff to have their accounts turned
back on. I think keeping them immortal is a *GOOD THING*. 

response 18 of 23:

May 22 04:39 UTC 2007

'Not wantingto see loginids for deceased Grexers being used in the future.
Another one of those is ec.'  ec's deseased? [I may be misreading this...]

response 20 of 23:

May 22 12:43 UTC 2007

Regarding #14; Mark has it correct, but reversed.  It was rather because
I've been dinking with the password hashing algorithm that I started to look
at the password file and noticed a lot of inactive accounts that were
immortal, but that I was dinking with immortals to try and change the
hashing algorithm.  I just sort of looked at it and said, ``wow, some of
these accounts are really old, I wonder if anyone even knows these people
are still around?  I wonder if *they* know they still have an account?'' As
far as converting the password file goes, I suspect that its irrelevant, as
most of these folks aren't going to remember their passwords anyway, and are
going to need them to be reset.  :-)

Let me clarify something that I think folks are confused about: I don't see
a *problem* with the immortals list at all, but rather all I have are
questions.  I actually think it would be really cool if these people could
be convinced to come back to grex, particularly if people know them and
could ask them about it.  For the record my two cents are that we shouldn't
delete idle immortals either.  Oh, and I also thought it was neat to see
some accounts that had been inactive for 12 or so years.

Well, let me rephrase that last bit; I see a lot of system type users in
there that probably shouldn't be (they're already protected from automatic
deletion by other means), but that's obviously not what we're talking about
here, so let's ignore the pseudo-users that don't correspond to an actual
human being, just some function of the systems software.  (For completeness,
an example of such a user is the `mysql' account; the MySQL database package
has its own user.  Nobody logs into that account, really; those who need to
access it for various administrative reasons occassionally do so, but that's
not the issue here.  That account won't be deleted because it has a very low
UID number, so its inclusion in the immortal file is redundant, though it
doesn't hurt anything.  In some ways its equivalent to putting `root' into
the immortal file; doesn't hurt anything, but has no effect.)

Now, the argument for disabling some of these accounts is largely for the
protection of the user and account itself.  It would be unfortunate if
someone figured out how to break into one of these accounts and then started
to impersonate that individual; the longer an account lies fallow, the
higher the probability that that could happen.  In particular, I could
imagine this being particularly unfortunate for a user who is deceased
(though I also like the idea of preventing that user's login from being
reused as a legacy sort of thing).

response 22 of 23:

May 23 02:22 UTC 2007

Yeah. I was never especially close with him but we were in the same
class at Community HS and we had several mutual friends. I always really
liked him. We would occasionally send each other emails. I had a little
crush on  him at one point. I was more effected by the news of his death
than I would have thought.