response 35 of 85:

Dec 10 04:35 UTC 2010

Okay, then, sounds like we're in good shape.

response 37 of 85:

Dec 10 12:38 UTC 2010

I'm going to address your post point by point.  I'm also going to take
the time to fix your spelling errors.

> first of all .... about emailing passwords... when a newuser comes here
> she/he/it creates a passwd.

That's not true anymore; the user isn't even prompted for a password.
Further, there's nothing that says that they *have* to give a password
to newuser.

> wtf is wrong with that? nothing.

Actually, it became a vector for abuse.  I have caught specific people
making *thousands* of accounts with scripts.  This way, at least we can
track that back to an email address.

Second, by generating the passord and emailing it to the user, at least we
have some sort of useful contact information: if the user logged in at all,
we know we've got an email address for them.

Lots of sites do this: ask for an email address and email an auto-generated
password to the user.  It works just fine all over the Internet.

> second, the validation is a time delay, even if it is 30 secs.

What validation are you referring to?  The automated validation of the
email address that newuser does?  I'd say that in the worst case that
might take half a second.

Or are you talking about how long it takes for the user to get the email
so they can login for the first time?  It takes a few seconds.  The upsides
are worth it.

> third.  the eamil to the newuser may not be read (or it might go into
> some spam folder) and be unknown for months. (rt stuff is experience as
> is ... my email).

It strikes me that if a user is interested in getting an account on Grex,
they won't mind getting an email with their password.  Evidence of this is
all over the net; it's more common than not for users to get passwords
emailed to them than otherwise.  If they wait for months, well, that's on
them and they weren't likely to be very interested anyway.

What's the difference between a user logging in once automatically at the
end of creating their account and never logging again, and never logging in
because they didn't bother to read the email that we told them they were
going to get?
   
> i have  validated .. well tried to validate ... reaped logins .. which
> prompted me ... a while ago ... to ask about the reap  procedure.  what
> i had to send was "well create your login id AGAIN .. and i will validate"

I don't know what this has to do with newuser emailing passwords, except
perhaps an extension of the above paragraph about the user not reading his
or her email for months.  Newuser is pretty explicit about telling the
user, multiple times, that it's going to send them email.  If they choose
to ignore that email, then they're just as likely to login to resh, see
they can't run BNC or upload udp.pl and disappear after one login.

The policies and criteria by which we decide to reap accounts have not
changed for years.  If it takes the porters months to do validation, then
that's a real problem.
   
> fourth .. a password sitting around for a while is STUPID (imnsho)
> which is also different from the new user's original choice .. w t f ?

What do you mean, "is also different from the new user's original choice"?
Do you mean a password that they enter, or a password that they have in
mind when they create an account on Grex?  If the former, they don't enter
a password.  If the latter, I claim this is actually *easier* on them
since they don't have to sit there and think of one.

To be clear, here's the basic process for getting an account on Grex:

1. Login as newuser and enter your basic information:
   a. "Real" name.
   b. Email address.
   c. desired login name.
   d. Currently, a few other questions: address, phone number, interests, etc.
   * Note that password is not on this list. *
2. Newuser generates and emails you your password.
3. User gets the password, logs in and is in resh.  Resh sees they've
   got a special file in their home directory (I believe I named it,
   ".needspwchange", but I can't remember) and prompts them to change
   their password.

That's it.  Suppose we go on through the validation process.

4. User goes through the validation process:
   a. send email to porters@grex.org with the request,
   b. get an email back saying, "How'd you hear about Grex?"
   c. user gives some response (really, any response will do),
   d. a porter runs "validate user" on Grex, thus changing their
      primary group to "people" and changing their shell to
      /usr/local/bin/newly-validated (this will move to /cyberspace/bin
      soon, though; the path is unimportant).
5. User logs in again (note that they changed their password the first
   time they logged into resh; it doesn't change at all during the validation
   process).  Newly-validated chgrp's their files to the "people" group
   and invokes /usr/local/bin/pickashell (again, this needs to move to
   /cyberspace/bin, but the path doesn't matter); the user picks what shell
   they want to use and away they go.

Now the user has real access to Grex.  Supposing that they wanted the
full, unrestricted access, then go through the existing procedures, which
haven't really changed since Grex was created, to get verified: basically,
this means that they send a copy of an ID or a personal check or use
paypal, at which point someone runs "verify user" on them, which changes
their primary group to "verified" (and that's basically it; it also adds
them to "people" as a secondary group).

What I'd like to do, and what board talked about somewhere on the order
of three or four years ago, is add an automated verification system.
Basically, the user types "verify" or something on Grex, gets a URL that
they click on, they pay a couple of bucks or something through PayPal,
PayPal contacts us, we verify the payment and automagically verify them.

> there is more but the above is enough, i think.

No, I'm afraid it is not.

You are making a lot of flimsy assumptions (that the user won't
read their email, or that it will get marked as spam) and predicating
your argument on things that haven't been true for years (that the
user comes to Grex with some idea of what they want their password
to be, probably also that this is some sort of huge security risk).
It isn't 1991 anymore.

I think that what newuser is doing now is actually much better than
the old system:

a. It avoids abuse.
b. It gives us much higher quality contact information (we actually
   have an email address that we know works in case the user forgets
   his or her password).
c. It makes contacting the user simpler: we can look at newuser's
   contact logs to get a user's email address if we want to send them
   a message, instead of digging through their personal files (which
   TS does regularly in order to find email addresses for validation
   purposes).
d. It gives an air of professionalism to Grex that, I claim, will
   increase users, not drive them away.
e. It follows well-established and widely used precedent.  Indeed,
   even on Grex, when we reset someone's password, we just send
   them an email.

Does anyone else feel that emailing the password to the new user is
bad?

response 39 of 85:

Dec 10 15:09 UTC 2010

resp:38 See steps 4 and 5 in resp:37.  I really doubt the spam problem
is much of a concern, to be honest.

response 41 of 85:

Dec 10 17:21 UTC 2010

Sometimes big reforms require small changes be implemented first, veek.

response 43 of 85:

Dec 11 07:16 UTC 2010

  
i;m glad cross is redoing newuser ... miy comment was historical.
  
the futeur wiell be differnet... and if newuewr creates NO passwed for the
new logins ... doenslt that open the flooldgarttes? charlie woueild object?
  

response 45 of 85:

Dec 12 13:24 UTC 2010

I think you are moving in the right direction, cross.  I only wish I
could be more useful in the endeavour.

response 47 of 85:

Dec 13 17:04 UTC 2010

  
re 45 ... what gelinas said.
  
re 43 ... ummm, newuser process prompts new-loginid to create a passwd.
  
then why email that pasaswd to new-logoind's alt email addrs? or does
the newuwer process wipe out new-logoind's self-created passwd, assign a new
passwd and then email that onwe ?
  
as of now, i can see every bad reason to email passwds and no good ones.
  
charlie == charlie root ... from whom we (both??) eget daily emails. eh?
  

response 49 of 85:

Dec 14 02:58 UTC 2010

 
putty now has a capthca ????  i;ll have to look at teh web version again.
  

response 51 of 85:

Dec 14 19:00 UTC 2010

I went through the current command line newuser the other day, and saw
the captcha feature, too (it looks like figlet lettering). The email
feature worked nicely.  It gave me the temporary password and told how
to log in via ssh, which is a good thing.  When I used the password to
log in, it immediately had me change it so the user gets to use their
desired password (also a good thing).  What I had trouble finding,
though I may have missed it in all the text that flowed by, was how
to get validated.  That probably should be part of the resh allowed
commands list so that users will find it right away, and part of the
instructions when you log in if you are a resh user.  Again, I may have
missed it, but it wasn't immediately obvious to me.

response 53 of 85:

Dec 14 19:18 UTC 2010

I too tested the command line new user recently and liked it a lot.

response 55 of 85:

Dec 15 00:48 UTC 2010

I am typing on my phone, so excuse the brevity.  All the text is still in text
files.  Source is in subvversion.  It probably needs a soak.

response 57 of 85:

Dec 15 16:39 UTC 2010

Web newuser is still broke.