On Thu, Oct 10, 2013 at 5:58 PM, Marc A. Pelletier <marc(a)uberbox.org> wrote:
On 10/10/2013 12:32 PM, Silke Meyer wrote:
ok, I consulted Nosy, DaB. and Mette about this
proposal and we will not
make the home directories accessible to others. They can contain all
sorts of private data, user names, e-mail addresses, ssh keys, who knows
what else - maybe even gpg keys, so handing the complete package over is
no option. I wouldn't want to "intrude" into the people's stuff. And
we'd get in trouble with the law here, as the German data protection act
is binding for us.
I agree with this as well, for those very reasons. This is the reason
why Tool Labs insists that any "real" tool is run from multi-maintainer
project equivalents, and with clear licensing.
I would not allow user's own home directories to be turned over to a
third party under any circumstances, this is why we want no code running
there we might want to salvage in the future. And, likewise, I'm pretty
sure the foundation wouldn't /want/ to be given custody over data that
may or may not be private from contributors who have not given explicit
leave to do so.
To be clear, I was not suggesting to just dump all home directories on
bittorrent
;-)
public_html and cgi-bin should contain most code, and for small tools,
could be checked quickly by hand for personal/secret data.
Also, of course I prefer people moving their own tools! Just in the
important-tool-will-die-with-toolserver scenario...
Magnus