On Thu, Oct 10, 2013 at 5:58 PM, Marc A. Pelletier marc@uberbox.org wrote:
On 10/10/2013 12:32 PM, Silke Meyer wrote:
ok, I consulted Nosy, DaB. and Mette about this proposal and we will not make the home directories accessible to others. They can contain all sorts of private data, user names, e-mail addresses, ssh keys, who knows what else - maybe even gpg keys, so handing the complete package over is no option. I wouldn't want to "intrude" into the people's stuff. And we'd get in trouble with the law here, as the German data protection act is binding for us.
I agree with this as well, for those very reasons. This is the reason why Tool Labs insists that any "real" tool is run from multi-maintainer project equivalents, and with clear licensing.
I would not allow user's own home directories to be turned over to a third party under any circumstances, this is why we want no code running there we might want to salvage in the future. And, likewise, I'm pretty sure the foundation wouldn't /want/ to be given custody over data that may or may not be private from contributors who have not given explicit leave to do so.
To be clear, I was not suggesting to just dump all home directories on
bittorrent ;-)
public_html and cgi-bin should contain most code, and for small tools, could be checked quickly by hand for personal/secret data.
Also, of course I prefer people moving their own tools! Just in the important-tool-will-die-with-toolserver scenario...
Magnus