Re: [Ietf-and-github] Rules regarding ownership of orgs

Warren Kumari <warren@kumari.net> Tue, 17 March 2020 19:12 UTC

Return-Path: <warren@kumari.net>
X-Original-To: ietf-and-github@ietfa.amsl.com
Delivered-To: ietf-and-github@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 04EC93A0B51 for <ietf-and-github@ietfa.amsl.com>; Tue, 17 Mar 2020 12:12:50 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -1.899
X-Spam-Level:
X-Spam-Status: No, score=-1.899 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, SPF_HELO_NONE=0.001, SPF_PASS=-0.001, URIBL_BLOCKED=0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (2048-bit key) header.d=kumari-net.20150623.gappssmtp.com
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id E-VK7HnoMq0N for <ietf-and-github@ietfa.amsl.com>; Tue, 17 Mar 2020 12:12:48 -0700 (PDT)
Received: from mail-lf1-x12f.google.com (mail-lf1-x12f.google.com [IPv6:2a00:1450:4864:20::12f]) (using TLSv1.2 with cipher ECDHE-RSA-AES128-GCM-SHA256 (128/128 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 1C0703A0B46 for <ietf-and-github@ietf.org>; Tue, 17 Mar 2020 12:12:47 -0700 (PDT)
Received: by mail-lf1-x12f.google.com with SMTP id s1so18201376lfd.3 for <ietf-and-github@ietf.org>; Tue, 17 Mar 2020 12:12:47 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=kumari-net.20150623.gappssmtp.com; s=20150623; h=mime-version:references:in-reply-to:from:date:message-id:subject:to :cc; bh=pWpS4h1Duo2Nz1Q8I5AxioS41KFn8PEQUXAfUz/0ixo=; b=fpxmt2L6OUonRuBVAIL86dt3cP1rnASy4IIp/36gqkueFL3s1UaAe0oUlAmkYC/Lsp X/FZkrVm2gbPRI/ZPRcp3eyGVpOyx2qRYAjY5wkXSN8lvpWIqJm53ajprQjsRbVMiWlb sWjZNbDgCkPcLAeIJbZKKi+nfx1Oze3ECvCDnof45j2UCrlavqqC8ZpiLknFlwrrRDx4 gVCkLo6F8Mh/M7eKQKdGja/Hgv8dpVsGn1UvfdARbNevaKe4t3vYzemxPfhzcYo2lK6f yZ/qVRKgc+Bq26aLK+QmRwusFZPVQTnu+9bzES+wOZgg4nc3Ft/7tIymae1E5mljAwK8 4qnw==
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20161025; h=x-gm-message-state:mime-version:references:in-reply-to:from:date :message-id:subject:to:cc; bh=pWpS4h1Duo2Nz1Q8I5AxioS41KFn8PEQUXAfUz/0ixo=; b=WJM1MdeN7DXxk9LtayMzthnyY5MqxQ4miLsd6GHGiyzrUgCATaPeyIM1MkSD+U7P7V qil0qFz3yvApfvyhtYEYh0ARMaTTmxdwfJsODYMrl6zz8FTmCI9o6oLUbDsz3xYq/DUO Wt/Auq5qubqDE48BxHXYuWv+dX6Gps2wLaYqJLCVza7kAFxH4dr2Bn+jefwBFcmr0wpf d9BUFKwih0SyUI+i+pYqvdABuNdPCK1ODHyfzx+yyIQ8N7A+Pq05WZXSYvXZyU3uKdsP gz7y5bt/1JtxCtt12LN2LQ4lew4AxSJVRnmokcwyd/mwCILa3AK3v1I9nkD4E7Da3cIE UI0Q==
X-Gm-Message-State: ANhLgQ2eO7mtmn3hYQY9Vui3XNV1TqRDnTNVmH0AFjIDMD77Tscv/Agb P4wDAkzrWjc9mXl0wykKQIAg4Y1Xejph5Oxy1hoWNg==
X-Google-Smtp-Source: ADFU+vsTUOPUkqea6MXXVvm464BWGFHHYdEhhR1RqkEeRn+SGr5jxs8qx+o0umRRHRniu2W5dIXQTCphCfMXnU/Ez8w=
X-Received: by 2002:a19:1c3:: with SMTP id 186mr530964lfb.88.1584472366017; Tue, 17 Mar 2020 12:12:46 -0700 (PDT)
MIME-Version: 1.0
References: <26230b6d-d241-40d9-9290-0c91fdb8e88e@www.fastmail.com> <E4B2E3EC-5338-4C4A-B404-A64E308D9A10@akamai.com> <d5742dbd-bd7c-425a-8588-91d05da93323@www.fastmail.com> <CABcZeBN7U2m7bZ4p6Mwd+hkFgPGO2re=fhEwN=PYwFBs5eLbTw@mail.gmail.com> <CAHw9_iK8ZwsZBM30Rr-BGbHRBKQ0N3mCJEjSicN+JyJZF_o6dw@mail.gmail.com> <DFA1937A-882E-402A-870E-BA2EADAFFDE2@akamai.com>
In-Reply-To: <DFA1937A-882E-402A-870E-BA2EADAFFDE2@akamai.com>
From: Warren Kumari <warren@kumari.net>
Date: Tue, 17 Mar 2020 15:12:09 -0400
Message-ID: <CAHw9_iLNbNk-JFOsdvZULQmKw=GkOnKwHhuGcfhsMxPFtO-xFw@mail.gmail.com>
To: "Salz, Rich" <rsalz@akamai.com>
Cc: Eric Rescorla <ekr@rtfm.com>, "Rob Wilton (rwilton)" <rwilton@cisco.com>, "ietf-and-github@ietf.org, " <ietf-and-github@ietf.org>, Martin Thomson <mt@lowentropy.net>
Content-Type: text/plain; charset="UTF-8"
Archived-At: <https://mailarchive.ietf.org/arch/msg/ietf-and-github/lYyRUlE_sTIQ_jfG1FUubdJrS0c>
Subject: Re: [Ietf-and-github] Rules regarding ownership of orgs
X-BeenThere: ietf-and-github@ietf.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: "Discussion of using GitHub in IETF activities, particularly for Working Groups" <ietf-and-github.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/ietf-and-github>, <mailto:ietf-and-github-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/ietf-and-github/>
List-Post: <mailto:ietf-and-github@ietf.org>
List-Help: <mailto:ietf-and-github-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/ietf-and-github>, <mailto:ietf-and-github-request@ietf.org?subject=subscribe>
X-List-Received-Date: Tue, 17 Mar 2020 19:12:52 -0000

On Tue, Mar 17, 2020 at 3:01 PM Salz, Rich <rsalz@akamai.com> wrote:
>
> There was one comment about giving too much power to the secretariat.

Yes, thank you, I did see that -- I just happen to disagree. The
secretariat are (currently) the group which acts like sysadmins / root
for the IETF / IESG - they add and remove ADs in the DT, they can
reset passwords, they verify that the process was actually
followed[0], etc.

> The main point of this thread is *NOT* about that, but rather making sure there's continuity by having enough people.

Yup - and I think that the secretariat is the "continuity" - they are
(currently) the stable group within the IEFT - ADs come and go, but
the secretariat (role) remains - I'd think having 2 or 3 secretariat
role accounts is better, and more secure, than having 15ADs each with
a subset, and rotating them in and out.
W
[0]: It doesn't happen very often any more, but it used to be at least
somewhat common that an AD would accidentally click the wrong dropdown
in the DT, and put a document in IESG eval before IETF LC, or similar.
The secretariat would smack our hands, and fix it...

>
> I've been told by folks who are looking at the backup requirement, that it requires an owner account (which was a surprise to me and I will verify it).
>


-- 
I don't think the execution is relevant when it was obviously a bad
idea in the first place.
This is like putting rabid weasels in your pants, and later expressing
regret at having chosen those particular rabid weasels and that pair
of pants.
   ---maf