http://qs1969.pair.com?node_id=786446


in reply to Re^2: Status of Recent User Information Leak
in thread Status of Recent User Information Leak

Just because a good job was done of handling the issue does not equate to forgiveness in many of our books. No one is looking to punish anyone, so please stop being apologists and always remember that the volunteers chose to update the experience and voting system rather than protect the privacy of the users.

Replies are listed 'Best First'.
Re^4: Status of Recent User Information Leak
by Your Mother (Archbishop) on Aug 12, 2009 at 17:14 UTC

    Volunteers can do whatever the fsck they want. They're volunteers. I for one welcome our new volunteer overlords.

    Your position amounts to: Since no one had the tuits to make difficult but minor fixes to the passwords which would not have protected user emails or such at all in this recent breach, I don't want any new features.

    A reply falls below the community's threshold of quality. You may see it by logging in.
Re^4: Status of Recent User Information Leak
by tubaandy (Deacon) on Aug 12, 2009 at 15:47 UTC

    OK, understood. So then, what caused the site volunteers to update the experience and voting system rather than protect the privacy of the users? While I haven't spoken to any of them about this, my sense is that, like most things, the experience and voting system are very visible to the end users, while the fact that passwords were stored in plaintext was not. I would venture a guess that, had enough of the monks complained about the passwords when the folks were considering whether to update the experience and voting system or go to a different password storage system, they would have chosen to work on the passwords. That's just conjecture on my part, though.

    Updated to change "That begs the question" to "So then" to make Anonymous Monk feel better.

    tubaandy