Hello,
On Sat, Apr 19, 2008 at 1:34 AM, Mike Godwin mgodwin@wikimedia.org wrote:
(Note from Mike this is a resent, slightly revised version of the FAQ that I circulated a few weeks ago. It's also posted at the Wikimania website.)
--
Dear folks,
With the valuable assistance of Delphine and the local Wikimania team in Alexandria, I have attempted to assemble a security FAQ for Wikimania attendees at Wikimania 2008 at the Bibliotheca Alexandrina,. In particular, what follows is an attempt to give general answers to most of the security questions that were asked on foundation-l regarding security issues at the site.
Thank you Mike for this FAQ. However, it seems to me this is the result of an "internal" assessment conducted by Foundation employees, with the help of local organizers. Though I deeply value the work of Foundation employees, they are not risk assessments specialists, and this FAQ is not an "assessment from a professional firm", as promised by Sue in her February report to the board (see quote below). So, I'd like you to confirm that there actually is an additional assessment being conducted by a professional firm.
<quote> The board has asked me to review the Wikimania security issues. I've asked Mike to commission a routine conference site assessment from a professional firm, with a special focus on issues facing LGBT participants, and within the context of us being an organization that's highly-visible and not uncontroversial (e.g., Muhammad pictures, etc.). We'll ask for an overall threat assessment, as well as a set of recommendations on how to best reduce risk. I'll report progress to the board in April. </quote>
http://lists.wikimedia.org/pipermail/foundation-l/2008-March/039460.html