Re: [Eligibility-discuss] Handling the fear of "bogus" recall petitions
John C Klensin <john-ietf@jck.com> Fri, 25 October 2019 06:48 UTC
Return-Path: <john-ietf@jck.com>
X-Original-To: eligibility-discuss@ietfa.amsl.com
Delivered-To: eligibility-discuss@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id C11511200F7 for <eligibility-discuss@ietfa.amsl.com>; Thu, 24 Oct 2019 23:48:45 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -1.898
X-Spam-Level:
X-Spam-Status: No, score=-1.898 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, SPF_HELO_NONE=0.001, SPF_NONE=0.001] autolearn=ham autolearn_force=no
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id AjkL7KxiK5x8 for <eligibility-discuss@ietfa.amsl.com>; Thu, 24 Oct 2019 23:48:44 -0700 (PDT)
Received: from bsa2.jck.com (ns.jck.com [70.88.254.51]) (using TLSv1 with cipher DHE-RSA-AES256-SHA (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id D850312003F for <eligibility-discuss@ietf.org>; Thu, 24 Oct 2019 23:48:43 -0700 (PDT)
Received: from [198.252.137.10] (helo=PSB) by bsa2.jck.com with esmtp (Exim 4.82 (FreeBSD)) (envelope-from <john-ietf@jck.com>) id 1iNtOp-0005rC-4f; Fri, 25 Oct 2019 02:48:39 -0400
Date: Fri, 25 Oct 2019 02:48:32 -0400
From: John C Klensin <john-ietf@jck.com>
To: Brian E Carpenter <brian.e.carpenter@gmail.com>
cc: adrian@olddog.co.uk, 'Eliot Lear' <lear@cisco.com>, eligibility-discuss@ietf.org
Message-ID: <587B859DB99BCB30198AF5AE@PSB>
In-Reply-To: <dc3bf13f-0178-8e4c-6680-ae3258ac1a9b@gmail.com>
References: <00c801d58a9a$53693c60$fa3bb520$@olddog.co.uk> <CB806045-0E5E-4445-A377-7CD547B9DD90@cisco.com> <010a01d58ac1$c0ab2320$42016960$@olddog.co.uk> <dc3bf13f-0178-8e4c-6680-ae3258ac1a9b@gmail.com>
X-Mailer: Mulberry/4.0.8 (Win32)
MIME-Version: 1.0
Content-Type: text/plain; charset="us-ascii"
Content-Transfer-Encoding: 7bit
Content-Disposition: inline
X-SA-Exim-Connect-IP: 198.252.137.10
X-SA-Exim-Mail-From: john-ietf@jck.com
X-SA-Exim-Scanned: No (on bsa2.jck.com); SAEximRunCond expanded to false
Archived-At: <https://mailarchive.ietf.org/arch/msg/eligibility-discuss/JxKFQSNgPGwFPNzyjd8XWH2mbCk>
Subject: Re: [Eligibility-discuss] Handling the fear of "bogus" recall petitions
X-BeenThere: eligibility-discuss@ietf.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: <eligibility-discuss.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/eligibility-discuss>, <mailto:eligibility-discuss-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/eligibility-discuss/>
List-Post: <mailto:eligibility-discuss@ietf.org>
List-Help: <mailto:eligibility-discuss-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/eligibility-discuss>, <mailto:eligibility-discuss-request@ietf.org?subject=subscribe>
X-List-Received-Date: Fri, 25 Oct 2019 06:48:46 -0000
--On Friday, October 25, 2019 15:55 +1300 Brian E Carpenter <brian.e.carpenter@gmail.com> wrote: > Adrian, > >> I think you are worried about "gaming the system" > > That may be so, but: > >> c. Those who have never attended. > > also seems to me to be a proxy for "Those who have very > limited personal knowledge of the person being recalled, so > may not be capable of fair assessment of their conduct." > > Personally I'm more worried about that than the risk of gaming > or DOSsing the system. Now while it's true that a non-attendee > might have frequently met the recallee at (say) ITU-T > meetings, it's still probably the best proxy we've got for > "very limited personal knowledge". Assuming, of course, that > we think such personal knowledge is needed. Brian, keep in mind that we are talking about petitioners here, not the recall committee. While I think there are strong arguments for considering different rules for its composition than for the Nomcom, no one has proposed anything specific along those lines and the "small steps" principle suggests not touching it right now. People who sign recall petitions without knowledge of the person being targeted are a different problem, but I don't think any evidence has been offered that would suggest remote participants would be more likely to exhibit that particular form of bad behavior than those who attend in person. Borrowing from an unrelated thread, to suggest that remote participants would be more prone to such behavior would constitute making a vague accusation against unspecified parties and doing so with no specific evidence. Beyond that, I want to repeat what I've said on the call and earlier. In that nearly eight years between October 1996 (RFC 2027) and June 2004 (RFC 3777, which introduced the 20 signatures and nomcom eligibility requirements), our rule about petitions for initiating the process was that "anyone" could do it. No requirement for IETF participation, attending meetings, or writing things; no multiple signatures as a cross-check or barrier; no requirement for proof of humanity or even proof of life. Many of us will recall that the number of IETF participants who were accused of being or recruiting sock puppets or engaging in long-term troll-like behavior was larger than it is in these kinder and gentler times. It would have taken exactly one such troll or other bad actor to initiate a recall process. It would have taken exactly one such bad actor with the ability to manufacture bots or sock puppets to generate recalls against every single Nomcom appointee. And yet the number of recall attempts (filed petitions) during that period was zero. THere are many possible ways to mount a DoS attack against the IETF. The easiest and probably most destructive would be to create a large number of fake identities, sign them up for the IETF list, and then attack one IETF Last Call after another, a process that would not only prevent us from getting any work done but that would prevent our changing procedures to work around the problem. That has also happened zero times. The evidence that remote participants are being deprived of the ability to use the recall process to protect themselves against abusing behavior in the leadership is clear and obvious. Not doing something about that because of fears of a problem that has never occurred despite many opportunities strikes me as, at best, having our priorities wrong. Of course, one can argues that the recall process is unusable in practice and therefore creating a more fair initiate process is irrelevant, but I really hope we don't need to go there, if only because it would invite appeals that go more or less directly to the ISOC BoT. best, john
- [Eligibility-discuss] Handling the fear of "bogus… Adrian Farrel
- Re: [Eligibility-discuss] Handling the fear of "b… Eliot Lear
- Re: [Eligibility-discuss] Handling the fear of "b… S Moonesamy
- Re: [Eligibility-discuss] Handling the fear of "b… Adrian Farrel
- Re: [Eligibility-discuss] Handling the fear of "b… Brian E Carpenter
- Re: [Eligibility-discuss] Handling the fear of "b… John C Klensin
- Re: [Eligibility-discuss] Handling the fear of "b… Eliot Lear
- Re: [Eligibility-discuss] Handling the fear of "b… Adrian Farrel
- Re: [Eligibility-discuss] Handling the fear of "b… Adrian Farrel
- Re: [Eligibility-discuss] Handling the fear of "b… Eliot Lear
- Re: [Eligibility-discuss] Handling the fear of "b… S Moonesamy
- Re: [Eligibility-discuss] Handling the fear of "b… Richard Barnes
- Re: [Eligibility-discuss] Handling the fear of "b… Adrian Farrel
- Re: [Eligibility-discuss] Handling the fear of "b… Michael Richardson
- Re: [Eligibility-discuss] Handling the fear of "b… Michael Richardson
- Re: [Eligibility-discuss] Handling the fear of "b… Pete Resnick
- Re: [Eligibility-discuss] Handling the fear of "b… Andrew G. Malis
- Re: [Eligibility-discuss] Handling the fear of "b… Adrian Farrel
- Re: [Eligibility-discuss] Handling the fear of "b… Eliot Lear
- Re: [Eligibility-discuss] Handling the fear of "b… Pete Resnick
- Re: [Eligibility-discuss] Handling the fear of "b… Richard Barnes
- Re: [Eligibility-discuss] Handling the fear of "b… Pete Resnick
- Re: [Eligibility-discuss] Handling the fear of "b… Eliot Lear
- Re: [Eligibility-discuss] Handling the fear of "b… Eliot Lear
- Re: [Eligibility-discuss] Handling the fear of "b… Eliot Lear
- Re: [Eligibility-discuss] Handling the fear of "b… Michael StJohns
- Re: [Eligibility-discuss] Handling the fear of "b… Michael StJohns
- Re: [Eligibility-discuss] Handling the fear of "b… Brian E Carpenter
- Re: [Eligibility-discuss] Handling the fear of "b… Michael Richardson
- Re: [Eligibility-discuss] Handling the fear of "b… Michael Richardson
- Re: [Eligibility-discuss] Handling the fear of "b… Michael Richardson
- Re: [Eligibility-discuss] Handling the fear of "b… Michael Richardson
- Re: [Eligibility-discuss] Handling the fear of "b… Brian E Carpenter
- Re: [Eligibility-discuss] Handling the fear of "b… S Moonesamy
- Re: [Eligibility-discuss] Handling the fear of "b… John C Klensin
- Re: [Eligibility-discuss] Handling the fear of "b… John C Klensin
- Re: [Eligibility-discuss] Handling the fear of "b… Michael StJohns
- Re: [Eligibility-discuss] Handling the fear of "b… Michael Richardson
- Re: [Eligibility-discuss] Handling the fear of "b… Michael Richardson
- Re: [Eligibility-discuss] Handling the fear of "b… Andrew G. Malis
- Re: [Eligibility-discuss] Handling the fear of "b… S Moonesamy
- Re: [Eligibility-discuss] Handling the fear of "b… Michael Richardson