20 Jan
2016
20 Jan
'16
1:57 p.m.
As one of the people with the ability to edit the Front Door Magnetic Card
Access System, I have a few questions for everyone to think about:
What are our requirements for information kept on each card? This
information is only available to people like myself with root access on
the door control computer.
I was going on the assumption that, for each card able to open the door,
we should store the following information:
1. the name or nym identifying the person who will be using the card
2. a way to contact that person (phone number or email)
3. at least one affiliation with a member collective (sudo, CCL, BAPS etc)
I have been seeing cards getting added to the records without #2 and #3
and I wonder if we, as Omni, thing this is a sustainable policy.
Also, I don't know how many people have access to the door control
computer, and access is presently anonymous. Is this something that
should be more curated? We have a mailing list access(a)lists.sudoroom.org
but I never get any responses from anyone on the list.
thanks for your thoughts on this.
-jake
20 Jan
20 Jan
3:09 p.m.
New subject: [omni-discuss] card access questions for Omni general membership
I agree with Jake on these.
We should have Omni affiliation and a means of contact for every person who
has door access. And root access to the door control computer should be
carefully controlled and logged.
In my opinion, anonymous access to the door control computer is probably
the more worrisome issue. If you can at least track *who* is adding people
to the access list, that would be a good start. Then we can at least
reeducate those people to fill in the required information - or suspend
their admin access if they keep adding unaffiliated people...
Patrik
On Wed, Jan 20, 2016 at 1:57 PM, Jake <jake(a)spaz.org> wrote:
As one of the people with the ability to edit the
Front Door Magnetic Card
Access System, I have a few questions for everyone to think about:
What are our requirements for information kept on each card? This
information is only available to people like myself with root access on the
door control computer.
I was going on the assumption that, for each card able to open the door,
we should store the following information:
1. the name or nym identifying the person who will be using the card
2. a way to contact that person (phone number or email)
3. at least one affiliation with a member collective (sudo, CCL, BAPS etc)
I have been seeing cards getting added to the records without #2 and #3
and I wonder if we, as Omni, thing this is a sustainable policy.
Also, I don't know how many people have access to the door control
computer, and access is presently anonymous. Is this something that should
be more curated? We have a mailing list access(a)lists.sudoroom.org but I
never get any responses from anyone on the list.
thanks for your thoughts on this.
-jake
_______________________________________________
discuss mailing list
discuss(a)lists.omnicommons.org
https://omnicommons.org/lists/listinfo/discuss
3:11 p.m.
New subject: [sudo-discuss] [omni-discuss] card access questions for Omni general membership
It should be added to sudo-humans
On Wed, Jan 20, 2016 at 3:09 PM, Patrik D'haeseleer <patrikd(a)gmail.com>
wrote:
I agree with Jake on these.
We should have Omni affiliation and a means of contact for every person
who has door access. And root access to the door control computer should be
carefully controlled and logged.
In my opinion, anonymous access to the door control computer is probably
the more worrisome issue. If you can at least track *who* is adding people
to the access list, that would be a good start. Then we can at least
reeducate those people to fill in the required information - or suspend
their admin access if they keep adding unaffiliated people...
Patrik
On Wed, Jan 20, 2016 at 1:57 PM, Jake <jake(a)spaz.org> wrote:
--
-----BEGIN PGP PUBLIC KEY BLOCK-----
Version: OpenPGP.js v.1.20121007
Comment: http://openpgpjs.org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=V/Ia
-----END PGP PUBLIC KEY BLOCK-----
As one of the people with the ability to edit the
Front Door Magnetic
Card Access System, I have a few questions for everyone to think about:
What are our requirements for information kept on each card? This
information is only available to people like myself with root access on the
door control computer.
I was going on the assumption that, for each card able to open the door,
we should store the following information:
1. the name or nym identifying the person who will be using the card
2. a way to contact that person (phone number or email)
3. at least one affiliation with a member collective (sudo, CCL, BAPS etc)
I have been seeing cards getting added to the records without #2 and #3
and I wonder if we, as Omni, thing this is a sustainable policy.
Also, I don't know how many people have access to the door control
computer, and access is presently anonymous. Is this something that should
be more curated? We have a mailing list access(a)lists.sudoroom.org but I
never get any responses from anyone on the list.
thanks for your thoughts on this.
-jake
_______________________________________________
discuss mailing list
discuss(a)lists.omnicommons.org
https://omnicommons.org/lists/listinfo/discuss
_______________________________________________
sudo-discuss mailing list
sudo-discuss(a)lists.sudoroom.org
https://sudoroom.org/lists/listinfo/sudo-discuss
28 Jan
28 Jan
12:45 a.m.
New subject: [sudo-discuss] card access questions for Omni general membership
On Wed, 20 Jan 2016 13:57:11 -0800 (PST)
Jake <jake(a)spaz.org> wrote:
Also, I don't know how many people have access to
the door control
computer, and access is presently anonymous. Is this something that
should be more curated? We have a mailing list
access(a)lists.sudoroom.org but I never get any responses from anyone
on the list.
The ability to grant access should be closely controlled, and changes
to who has access should be logged. To me, that's the most pressing
issue with the access control system.
--
Charley Sheets
3004
days inactive
3012
days old
3 comments
4 participants
participants (4)
-
Charley Sheets -
Jake -
Morgan Allen -
Patrik D'haeseleer