|
Grex > Coop > #39: Member Proposal: Create Three Classes of Grex Accounts: Users, Community Users, Validated Users |  |
|
| Author |
Message |
| 25 new of 150 responses total. |
cmcgee
|
|
response 50 of 150:
| 
Sep 2 01:22 UTC 2007 |
As written, the proposal puts local grex email privileges in the
Community User group.
|
cmcgee
|
|
response 51 of 150:
|
Sep 2 01:23 UTC 2007 |
Dan, would unicorn be able to set up and run the vote admin program?
|
cmcgee
|
|
response 52 of 150:
|
Sep 2 01:24 UTC 2007 |
As written, the proposal puts http access in the Validated Users group.
|
cross
|
|
response 53 of 150:
|
Sep 2 01:54 UTC 2007 |
Regarding #51; I think that would be great!
|
unicorn
|
|
response 54 of 150:
|
Sep 2 03:16 UTC 2007 |
#44: "Can receive mail only to local Grex account"
Do you mean "from local Grex account"?
"Promotion from the User class to Community Users class would be by
responding to a email sent by a Grex Helper which asked the user to
identify where or how they found out about Grex."
How will they respond if they don't have local e-mail access? Maybe
we need some kind of script that allows communication with helpers
without going through e-mail. Is that what you had in mind?
|
cross
|
|
response 55 of 150:
|
Sep 2 03:21 UTC 2007 |
Regarding #54; I think the idea is that they can only receive local mail.
That is, a validated user can send an unvalidated user an email, but not the
opposite.
As for how they will respond, I was envisioning some kind of web based form
thing wrapped in a script, perhaps integrating with our existing RT database.
|
cmcgee
|
|
response 56 of 150:
|
Sep 2 13:31 UTC 2007 |
Yes, I'm suggesting that new accounts be able to receive mail, but not
send it.
I was thinking that they could receive both local and outside mail, but
am willing to eliminate "outside" if I hear good reasons.
|
remmers
|
|
response 57 of 150:
|
Sep 2 14:38 UTC 2007 |
Isn't spam just about the only kind of outside mail that a new user
would be likely to receive? Becoming an instant spam target doesn't
strike me as the the best first impression for Grex to make on a newcomer.
|
cmcgee
|
|
response 58 of 150:
|
Sep 2 16:24 UTC 2007 |
Sometimes signing up for a web-based service requires that you provide a
valid email address to which they can send email.
I can see allowing a person to set up such an address. It is not
necessarily true that the mailbox will automatically be filled with
spam.
|
cross
|
|
response 59 of 150:
|
Sep 2 16:34 UTC 2007 |
For technical reasons, it would be better if Internet mail were withheld until
requested. In particular, if we *don't* do that, there's nothing preventing
another seabass from creating a .forward file with everyone on grex in it,
and then sending himself mail from, say, a hotmail account and having it go
to everyone on the system once again.
|
keesan
|
|
response 60 of 150:
|
Sep 2 16:39 UTC 2007 |
New users could be asked to provide an email address outside grex to which
some questionnaire could be sent.
|
cmcgee
|
|
response 61 of 150:
|
Sep 2 16:48 UTC 2007 |
No, that's exactly what I'm trying to avoid. I don't want people to have to
have an email account somewhere else in order to get one here.
Dan, are you saying that having in bound email only (not outbound to the
internet, and not outbound to Grex) would still allow that particular
exploitation?
|
cross
|
|
response 62 of 150:
|
Sep 2 17:15 UTC 2007 |
Yes. Inbound mail from the Internet would allow that attack.
|
scholar
|
|
response 63 of 150:
|
Sep 3 21:05 UTC 2007 |
This response has been erased.
|
cmcgee
|
|
response 64 of 150:
|
Sep 4 13:59 UTC 2007 |
------------------
User Account: No Internet access. Can use Unix shell, participate in
party and the conferences.
Community User Account: Full E-Mail. Users can send and receive email
from or to any address.
-------------------
Amended to eliminate even local email from the initial user account.
I am told that we can allow social validation without requiring a
different email address (at least for now), so my main concern has been
answered.
|
cmcgee
|
|
response 65 of 150:
|
Sep 4 19:26 UTC 2007 |
Complete Text, Third Version:
There would be three classes of accounts:
User Account: No Internet access. Can use Unix shell, participate in
party and the conferences.
Community User Account: Full E-Mail. Users can send and receive email
from or to any address.
Validated User Account: Full net access. Full access to the Internet,
including telnet, ssh, ftp and http.
All new user accounts would be created in the User class.
Promotion from the User class to Community Users class would be by
responding to a email sent by a Grex Helper which asked the user to
identify where or how they found out about Grex.
Promotion from Community Users to Validated Users would require the same
validation that is currently required for membership, either a photocopy
of a government or school issued ID that contains the person's photo, or
by a $1.00 payment through Paypal.
Once an account was Validated, it would not need to be revalidated.
Validated User accounts that had not been active for more than a year
could be reaped at the end of that time. Becoming a member would be
sufficient, but not necessary for becoming a Validated User.
|
tsty
|
|
response 66 of 150:
|
Sep 4 20:39 UTC 2007 |
pretty good ... still the problem of user email response for validation.
and promotion. is is sit feasible fo ruser to ahve local-eamial onluy?
both send and receive inside grex but nothing from outside grex at all?
i;'m assuiming somewher above that vailidated includes those-who-are-aleready
-known. ... ?
|
cross
|
|
response 67 of 150:
|
Sep 4 20:57 UTC 2007 |
Regarding #66; We'll rig something up for validation, but no, we can no longer
afford to give totally anonymous email accounts out anymore. :-(
|
cross
|
|
response 68 of 150:
|
Sep 4 21:16 UTC 2007 |
Regarding #65; I endorse bringing this to a vote.
|
cmcgee
|
|
response 69 of 150:
|
Sep 4 21:17 UTC 2007 |
No, this proposal will not allow new users to have any kind of email,
inside or outside of Grex. You will have to be in the Social Validation
group to get any email access at all.
Staff has said that there will be a way for new users to request social
validation without supplying an off-Grex email address.
|
gelinas
|
|
response 70 of 150:
|
Sep 5 01:01 UTC 2007 |
I support bringing this to a vote.
|
scholar
|
|
response 71 of 150:
|
Sep 5 01:37 UTC 2007 |
I reiterate my endorsement and suggest others endorse as well.
|
maus
|
|
response 72 of 150:
|
Sep 5 04:37 UTC 2007 |
As a user interested in the wellbeing of Grexserver and Cyberspace
Communications, I support this, but as a non-member, I cannot formally
endorse this. I would like to see this happen, and hope it will curb the
abuse.
|
rcurl
|
|
response 73 of 150:
|
Sep 5 05:00 UTC 2007 |
"Promotion from the User class to Community Users class would be by
responding to a email sent by a Grex Helper which asked the user to
identify where or how they found out about Grex."
What kind of response? Anything? Even f... you? It doesn't say that the
User has to say "where or how they found out about Grex" - only that they
respond (nor that they respond truthfully).
(I'm also not sure what utility this has - but I have not read the whole
item.)
|
cmcgee
|
|
response 74 of 150:
|
Sep 5 12:49 UTC 2007 |
We have deliberately left this up to the discretion of the Grex Helper.
|