Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Remove private email option from moderation policy #45

Closed
bnoordhuis opened this issue Feb 7, 2016 · 23 comments
Closed

Remove private email option from moderation policy #45

bnoordhuis opened this issue Feb 7, 2016 · 23 comments

Comments

@bnoordhuis
Copy link
Member

From https://github.com/nodejs/node/pull/5107/files#r52125372:

Isn't an email to report@nodejs.org the way to go? Individual TSC members may have different ideas on how to deal with an issue so contacting one individually may lead to a certain level of arbitrariness.

Proposal: make report@nodejs.org the official way to contact TSC members for moderation purposes.

@mikeal
Copy link
Contributor

mikeal commented Feb 7, 2016

What does "official way" mean?

Isn't it already an official way?

@nebrius
Copy link
Contributor

nebrius commented Feb 7, 2016

I think that this email should be the preferred way, sure, but it shouldn't be the only way. If someone needs to report a TSC member for moderation purposes, knowing that that TSC member will receive the moderation request will most likely prevent that person from reporting at all.

I think the ability to send a moderation report that doesn't go to all TSC members is necessary. Right now, that way is to email individual TSC members directly. I don't think this is ideal either, and I would love to have a discussion on other ways to do these kinds of reports, but we absolutely need something.

@bnoordhuis
Copy link
Member Author

Isn't it already an official way?

The official way.

@mikeal
Copy link
Contributor

mikeal commented Feb 7, 2016

We're also about to be administering multiple orgs, and not all TSC members will be in those orgs.

It may be worth taking a subset of the TSC and making them responsible for moderation.

@zkat
Copy link

zkat commented Feb 7, 2016

How should community members address sensitive issues without needing to involve the entire TSC? What should happen if one of the people being reported is, in fact, a TSC member and the victim is afraid to reveal their own identity to the entire group, including the violator in question? I'm not sure how enforcing an all-or-nothing contact method for TSC members will address this particular (and important) case.

@mikeal
Copy link
Contributor

mikeal commented Feb 7, 2016

TBH, the actual administration setup of "how we moderate" is kind of a mess. I would stay away from any "all or nothing" rules until that is straightened out because we can't actually assess the impact of that kind of a rule.

@Fishrock123
Copy link
Contributor

Can we just designate a bunch of people to handle moderation and be done with it?

The TSC is totally overloaded and none of us can really also keep an eye out.

I don't know if giving people org ownership is good though (security, etc.) so that group would still have to contact us if someone needs blocking. (Also we should probably bug GitHub support about that..)

Also we could probably make an anon form on the website; that seems like a good idea. Reporting can be/feel like a double-edged sword.

@ashleygwilliams
Copy link
Contributor

i think this is a great moment to reintroduce the idea for a moderation work group.

@mikeal
Copy link
Contributor

mikeal commented Feb 7, 2016

Also we could probably make an anon form on the website; that seems like a good idea. Reporting can be/feel like a double-edged sword.

Can we just link to http://www.sendanonymousemail.net/ and give out the report@ email address?

@ghost
Copy link

ghost commented Feb 7, 2016

i agree with @ashleygwilliams, perhaps said WG can consist of TSC, inclusivity and other members alike?

@nebrius
Copy link
Contributor

nebrius commented Feb 7, 2016

i think this is a great moment to reintroduce the idea for a moderation work group.

+1, I think the TSC shouldn't be the ones to deal with day to day infractions because, as @Fishrock123 said, it's not a great use of the TSC member's time (with the caveat that moderation escalation still goes to the TSC). We should expand on this in nodejs/inclusivity#79.

Can we just link to http://www.sendanonymousemail.net/ and give out the report@ email address?

I still think it's really important that when someone reports a TSC member, that said TSC member doesn't get to see the reports until an official complaint is lodged. Does this approach allow for this behavior?

@ashleygwilliams
Copy link
Contributor

re: that site @mikeal, i'm not sure it really encourages the attitude we'd like it to and would be a potential avenue for abuse:

screen shot 2016-02-07 at 6 01 53 pm

@MylesBorins
Copy link
Contributor

I think the idea of a moderation WG with delegates from Inclusivity + TSC + collaborators is a strong one.

Having transparency of the individuals involved is imho very important.

@ghost
Copy link

ghost commented Feb 7, 2016

@ashleygwilliams http://send-email.org/ might pose as a better alternative. it's also less cluttered

@rvagg
Copy link
Member

rvagg commented Feb 7, 2016

What if someone wants to report a member of the moderation group? These arguments are kind of circular and probably argue for a more nuanced approach where we can provide multiple avenues that can reporters can select from along with a more official-ish one with some guarantees of a response in a similar way to security@.

@ashleygwilliams
Copy link
Contributor

noting that circularity is super important @rvagg and i 💯 agree. a plurality of options is definitely the way to solve this. i also like that this is aligned with another (somewhat similarly sensitive) process, i.e. security@.

i thought a WG might be a good idea just to ensure that we have people dedicated to working on and documenting and communicating the process. in lieu of a working group, is there another avenue to pursue this?

@mikeal
Copy link
Contributor

mikeal commented Feb 8, 2016

@ashleygwilliams sorry, that was the first google result for "anonymous email" :)

@mikeal
Copy link
Contributor

mikeal commented Feb 8, 2016

few quick things:

  • Since any org owner has access to the security group any member of moderation will need to have 2fa turned on (a requirement of the security WG).
  • Because we have to manually add and remove these members from various orgs the fewer people doing the moderation the better, even if the overall WG is larger the WG may want to designate just a few people strategically placed across timezones to do the actual moderation.

@jasnell
Copy link
Member

jasnell commented Feb 8, 2016

The key reason to allow for email to individual TSC members is to allow for the possibility that (a) the complaint in question may involve another TSC member or (b) the reporter may feel that the matter requires more sensitive handling.

@ChALkeR
Copy link
Member

ChALkeR commented Feb 8, 2016

@mikeal

Can we just link to http://www.sendanonymousemail.net/ and give out the report@ email address?

I don't think it even works.

@sup

http://send-email.org/ might pose as a better alternative. it's also less cluttered

That one works, but emails get to the Spam folder on Gmail.

@Starefossen
Copy link
Member

For reference these free and supposedly "anonymously" email services are shady business in my opinion – one day they are here and the next day they are gone. I would not recommend that we start pointing users to any of those without doing some serious digging around in their track record.

And for the record I do not support removing the ability to contact individual members for the reasons mentioned above by @nebrius, @jasnell and @rvagg.

@Fishrock123
Copy link
Contributor

I think it would probably be simpler and more reliable to have a form on the website.

@jasnell
Copy link
Member

jasnell commented Feb 25, 2017

Closing given that there's been no further discussion in over a year.

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Labels
None yet
Projects
None yet
Development

No branches or pull requests