Re: [Sks-devel] Withdrawal of Service - keys.flanga.io

[stuff]

Ill admit that was my mistake to not submit the article to Kristian first as 
promised, i genuinely forgot i had promised that, 2hrs of sleep yesterday and a 
fulls day work i didn't re-read the email and catch that before publication. 
For which i apologize, i am open for reasonable alterations to the article, to 
address this issue. i have addressed the need for corrections before and 
additional info in a previous article. Dishonest and deception is not my intent.

Kristian says in his interview the network was not designed to be resilient?
So why is the network made immutable by design? and why has it been made 
important as well that no single person can alter or abuse a key?

Im just here to try understand why no changes have happened, now i have learned 
no one is maintaining the project anymore, its dead in the water. This gives me 
a totally new perspective now.

>"Busy body, inserting my self into this?"
Its an open source project so its reasonable when its users come asking 
questions or find bugs i think its fair to be able hold the maintainers to 
scrutiny or criticism and even challenge their actions. especially when people 
depend on the services.Especially when its holding their personal information!

>From what i have gotten from all this is that the servers are nothing more 
>than an overly complex immutable data storage system with numerous unfixed 
>vulnerabilities that is no longer maintained, and poses financial and legal 
>risk to the admins who run and support it, with no possible fixes in the 
>foreseeable future?

>Like someone else said, we were all fine until you showed up.
it has not been fine, there's been years of complaints about how the servers 
work or to be more accurate don't. Admins having issues constantly and 
questions or calls for help simply ignored.  Now 2 more admins have complained 
and have not had a single response to their concerns. Once again very little to 
be heard kristian, i would like to see him address the concerns that Moritz 
Wirth and Fabian S have brought up.

Mike

On Thu, 15 Nov 2018 19:53:04 -0700
JD Erickson <address@hidden> wrote:

> I read the medium article - suffice it to say Mr. Mike seems to have a
> reading comprehension problem, because in the article he insists the
> keyserver network was intended to be resilient to attack (it is not, all of
> us who have been in the network for even a short time know it is not, and
> Kristian says it is not in his "interview" responses), and he also ignored
> 80% of the other stuff Kristian said in response to his questions. He seems
> to have failed to forward a draft of his medium article to Kristian for a
> "fact check" like he said he would, so on top of all that we have an
> element of dishonesty and deception.
> 
> What we have here is a busybody who just wants to assert themselves in some
> fashion. He has done so. Congratulations. You are a very impressive and
> important security professional, Mr. Mike, we are all enamored with you.
> 
> You aren't the first uninvited busybody to come in and screw with a project
> just to assert yourself, and I'm sure you won't be the last.
> 
> The inanity of people like you really leave a bad taste in my mouth for
> this stuff.
> 
> Like someone else said, we were all fine until you showed up. That must
> make you feel very important and validated. I'm happy for you.
> 
> On Thu, Nov 15, 2018 at 6:54 PM Ryan Hunt <address@hidden> wrote:
> 
> > On Nov 15, 2018, at 6:25 PM, Mike <address@hidden> wrote:
> >
> > So you are angry that i and a few others have reported several bugs, to a
> > system that *we would like to see continue to exist?*
> >
> > If there is no dev team,* then maybe its time to call it a day instead of
> > pretending everything is ok?*
> >
> >
> > You’d make an excellent politician with this superb ability to speak out
> > both ends, all while being incapable even coming up with solutions, let
> > alone implementing them.
> >
> > No one here has been pretending its okay, were just not willing to pack it
> > up and call it a day because of you say we should.. there’s literally no
> > chance someone’s going to read your articles and decide to volunteer the
> > time and energy to implementing a solution.. so really everything you’ve
> > done and all your doing is to the detriment of the key server network.. and
> > yet your surprised at the hostility you’ve found here?
> >
> > -Ryan
> >
> > On Thu, 15 Nov 2018 18:12:14 -0700
> > Ryan Hunt <address@hidden> wrote:
> >
> > Wait, you have the skillset to code attacks and spew articles yet, no
> > capability for solutions? Smells like ignorance is your forte.
> >
> > You seem to be under the impression that SKS has active developers working
> > on it, the reason the “dev team” is quiet as per your “articles” is there
> > is no friggin dev team, just some maintainers pushing merge requests from
> > people hacking it a bit here and there to fix major problems that can be
> > fixed and keep it compiling on modern systems.
> >
> > There is nobody actively interested in the development required to
> > re-archectect the SKS backend and infrastructure that had been running fine
> > for a few decades now.. until you came along and made a big stink.. If you
> > have a proposal for a new way of doing things, we’re all dying to hear it.
> >
> > -Ryan
> >
> >
> > On Nov 15, 2018, at 6:01 PM, Mike <address@hidden> wrote:
> >
> > If i had the skill set needed to submit patches i would, but i don't.
> > But i do have a voice and that can be used to spur on change.
> >
> > I wrote the articles because there is a clear ignorance here that your
> > displaying really well, which is preventing things from getting fixed. Your
> > clearly angry and not interested in resolving this issue through
> > discussion. That ignorance is going to harm admins as Moritz Wirth and
> > Fabian points out.
> >
> > Can you say there's no risk to admins financially and legally, because of
> > the poor design of the servers or do they work just fine and they have
> > nothing to worry about?
> >
> > If performing as designed means:
> > failing to deal with oversized keys and chewing up bandwidth and CPU
> > cycles and causing servers to stop responding or the web interface to
> > freeze or spit out garbage is a feature then ok.
> > or network instability then ok.
> >
> > Mike :)
> >
> > and if calling people children and being generally insulting is your thing
> > your not really being constructive with this!
> >
> >
> > On Fri, 16 Nov 2018 08:45:06 +0800
> > Matthew Walster <address@hidden <mailto:address@hidden
> > <address@hidden>>> wrote:
> >
> > On Fri, 16 Nov 2018, 08:36 Mike <address@hidden wrote:
> >
> > Your welcome to blame others for the servers issues.
> >
> > I and others have pointed out many times over the issues and no one has
> > fixed them.
> > Rather than blame me, take responsibility for the servers failings, for
> > the developers failings.
> >
> >
> > You are more than welcome to submit patches (or even ideas for patches) if
> > you want to help improve things. Screaming blue murder helps no-one.
> >
> > Decent and good developers take bugs and fix them and ensure the ongoing
> >
> > survival of their software, not blame them on the people who found them and
> > exposed them!
> >
> >
> > The software is not broken. It is performing as designed. The same
> > side-effects are present in Bitcoin but I don't see you making deranged
> > comments about that...
> >
> > Your basicly saying we should be able to have weak software and bad people
> >
> > shouldnt do bad things, thats not how the world works. Take some
> > responsibility!!!
> >
> >
> > That's not what anyone is saying. What are you, 12 years old?
> >
> > And im not a journalist!
> >
> >
> >
> > You wrote an article.
> >
> > M
> >
> >
> >
> >
> > --
> > me <address@hidden <mailto:address@hidden <address@hidden>>>
> >
> > _______________________________________________
> > Sks-devel mailing list
> > address@hidden <mailto:address@hidden <address@hidden>>
> > https://lists.nongnu.org/mailman/listinfo/sks-devel <
> > https://lists.nongnu.org/mailman/listinfo/sks-devel>
> >
> >
> >
> > --
> > me <address@hidden>
> >
> > _______________________________________________
> > Sks-devel mailing list
> > address@hidden
> > https://lists.nongnu.org/mailman/listinfo/sks-devel
> >


-- 
stuff <address@hidden>