1432
Comment:
|
2477
some questions, checked all the usertags
|
Deletions are marked like this. | Additions are marked like this. |
Line 10: | Line 10: |
* take notes and send them to debian-mobile mailing list, IRC and wiki | * take notes and send them to debian-mobile mailing list, IRC and wiki :ulrike: |
Line 17: | Line 17: |
* firmware update daemon [[https://blogs.gnome.org/hughsie/2018/01/10/phoning-home-after-updating-firmware/|phoning home after updating firmware]] which a overwhelming majority of users agreed with — on a G+ poll * default graphical interface calculator [[https://github.com/GNOME/gnome-calculator/blob/master/lib/currency.vala|downloads currency conversion rates]] * email program [[https://bugzilla.mozilla.org/show_bug.cgi?id=971347|guesses IMAP/SMTP server addresses over unencrypted connection]] * how can we automatically choose targets for manual testing? * how can we do automated testing for potential issues? |
|
Line 19: | Line 24: |
* how can we keep track of such requests & patchs within Debian? * how can we share our improvements with other distributions? |
|
Line 20: | Line 27: |
* can we create similar guidelines for packages in Debian? | |
Line 22: | Line 30: |
* tag BTS bugs with user tag "privacy" (TBD: chech which tags might already exist) | * tag BTS bugs with user tag "privacy", some existing users have a privacy tag: [[https://bugs.debian.org/cgi-bin/pkgreport.cgi?users=pabs@debian.org;tag=privacy|pabs@debian.org]] |
Line 24: | Line 32: |
== Links == * DebianPrivacy * FreedomBox/PrivacyAtHome * Teams/PkgPrivacyMaintainers |
BoF at DebConf18
BoF = https://en.wikipedia.org/wiki/Birds_of_a_feather_(computing)
https://debconf18.debconf.org/talks/69-does-debian-respect-users-privacy/
Agenda
- Volunteers needed
- take notes and send them to debian-mobile mailing list, IRC and wiki :ulrike:
- take questions from IRC
- Does have Debian privacy issues? I.e. can Debian users expect a privacy friendly operating system, when they install Debian? Is Debian "privacy by default"?
- Examples, where privacy might be violated:
- music player loads cover art or lyrics (3rd party gets information about which music someone is listening to at what time)
- web browser is checking extension compatibility with upstream server after upgrading the Debian package, even if no extensions or only packaged extensions are packaged
- chat program publishes presence information and chat state indicators by default
firmware update daemon phoning home after updating firmware which a overwhelming majority of users agreed with — on a G+ poll
default graphical interface calculator downloads currency conversion rates
email program guesses IMAP/SMTP server addresses over unencrypted connection
- how can we automatically choose targets for manual testing?
- how can we do automated testing for potential issues?
- Examples, where privacy might be violated:
- Is there something we should do about it?
- are we able to patch the software or convince upstream to change things?
how can we keep track of such requests & patchs within Debian?
- how can we share our improvements with other distributions?
- can we create some "guidelines" for both upstream programmers and upstream to make privacy the default?
- can we create similar guidelines for packages in Debian?
- do we need more things packaged and/or reviewed by the privacy packaging team?
- Tools:
tag BTS bugs with user tag "privacy", some existing users have a privacy tag: pabs@debian.org
- make a list, e.g. in the wiki, of privacy issues, so users can make informed choice
Links
- Teams/PkgPrivacyMaintainers