Re: [111attendees] Why do we allow people to edit CodiMD meeting notes who are not logged in?

Matthew Finkel <sysrqb@torproject.org> Fri, 30 July 2021 21:49 UTC

Return-Path: <sysrqb@torproject.org>
X-Original-To: 111attendees@ietfa.amsl.com
Delivered-To: 111attendees@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id C88E33A12C4 for <111attendees@ietfa.amsl.com>; Fri, 30 Jul 2021 14:49:29 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -1.896
X-Spam-Level:
X-Spam-Status: No, score=-1.896 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, RCVD_IN_MSPIKE_H3=0.001, RCVD_IN_MSPIKE_WL=0.001, SPF_NONE=0.001, URIBL_BLOCKED=0.001] autolearn=ham autolearn_force=no
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id k8ieVEN3rK9d for <111attendees@ietfa.amsl.com>; Fri, 30 Jul 2021 14:49:25 -0700 (PDT)
Received: from mx1.riseup.net (mx1.riseup.net [198.252.153.129]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 59C993A12AF for <111attendees@ietf.org>; Fri, 30 Jul 2021 14:49:23 -0700 (PDT)
Received: from fews1.riseup.net (fews1-pn.riseup.net [10.0.1.83]) (using TLSv1 with cipher ECDHE-RSA-AES256-SHA (256/256 bits)) (Client CN "*.riseup.net", Issuer "Sectigo RSA Domain Validation Secure Server CA" (not verified)) by mx1.riseup.net (Postfix) with ESMTPS id 4Gc1JL51hVzDrkW; Fri, 30 Jul 2021 14:49:22 -0700 (PDT)
X-Riseup-User-ID: 658C43116AA252F2293AA96E82E92AD1E6B276811C78B3DC27F464CC613595F7
Received: from [127.0.0.1] (localhost [127.0.0.1]) by fews1.riseup.net (Postfix) with ESMTPSA id 4Gc1JJ2v2Hz5vkW; Fri, 30 Jul 2021 14:49:19 -0700 (PDT)
Date: Fri, 30 Jul 2021 21:49:14 +0000
From: Matthew Finkel <sysrqb@torproject.org>
To: Carsten Bormann <cabo@tzi.org>
Cc: 111attendees@ietf.org
Message-ID: <20210730214914.y4zrqylmn7ynf2cj@localhost>
References: <CAED43EF-EA07-4B1F-9826-D2D8F890FB4A@tzi.org>
MIME-Version: 1.0
Content-Type: text/plain; charset=utf-8
Content-Disposition: inline
Content-Transfer-Encoding: 8bit
In-Reply-To: <CAED43EF-EA07-4B1F-9826-D2D8F890FB4A@tzi.org>
Archived-At: <https://mailarchive.ietf.org/arch/msg/111attendees/ZoqR7KJvd5i4f0B9CDLXln-xeDk>
Subject: Re: [111attendees] Why do we allow people to edit CodiMD meeting notes who are not logged in?
X-BeenThere: 111attendees@ietf.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: Mailing list for IETF 111 attendees <111attendees.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/111attendees>, <mailto:111attendees-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/111attendees/>
List-Post: <mailto:111attendees@ietf.org>
List-Help: <mailto:111attendees-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/111attendees>, <mailto:111attendees-request@ietf.org?subject=subscribe>
X-List-Received-Date: Fri, 30 Jul 2021 21:49:37 -0000

Hello Carsten,

I'm still new around here, so please excuse my ignorance. Are you
concerned about malicious edits? Have you seen abuse? Is there an
inherent need for edit attribution?

Thanks for helping me understand the problem,
Matthew Finkel

On Fri, Jul 30, 2021 at 10:54:56PM +0200, Carsten Bormann wrote:
> Grüße, Carsten
> 
> -- 
> 111attendees mailing list
> 111attendees@ietf.org
> https://www.ietf.org/mailman/listinfo/111attendees