CAcert System Admins discussion list

[Wytze van der Raay <wytze AT deboca.net>]

Teus Hagen schreef:
> See to address list.
> Can I have your feedback on this proposal?
> teus
> Op May 23, 2009, om 10:21 PM heeft Philipp Dunkel het volgende geschreven:
> 
>> I hereby propose to keep a list of people to contact in emergency
>> situations publically available via net. I think cacert.tel would be a
>> good way to do this. If we keep contact phone numbers anonymized just
>> noting the function.

Stefan proposed a .tel-based solution already on May 8:
   https://lists.cacert.org/wws/arc/cacert-sysadm/2009-05/msg00021.html

In my response to that:
   https://lists.cacert.org/wws/arc/cacert-sysadm/2009-05/msg00022.html

I questioned whether it would it would satisfy our privacy requirements,
and whether it would be sufficiently fool-proof in a hectic moment like
a real disaster recovery situation.

Philipp proposed some mitigation of the privacy issues in:
   https://lists.cacert.org/wws/arc/cacert-sysadm/2009-05/msg00044.html

by replacing personal names by functional names. I don't think that that
fully addresses the issue. Note that the contact list is not just phone
numbers, it is supposed to contain any possible method for reaching the
involved persons, including physical addresses, mobile phones, IRC,
e-mail and what else you can think of. Unless cacert.tel provides good
options to limit the visibility of all that information to only the
persons involved, I don't think it is a good idea to put it all there.
But I don't know enough about .tel to confirm or deny that.
As said before, a low-tech solution is fine with me :-)

Regards,
-- wytze

Attachment: smime.p7s
Description: S/MIME Cryptographic Signature