Bug#743694: Downgrade most of privacy-breach* tags from severity: error to pedantic

To: Daniel Leidert <daniel.leidert@wgdd.de>, 743694@bugs.debian.org
Subject: Bug#743694: Downgrade most of privacy-breach* tags from severity: error to pedantic
From: Jakub Wilk <jwilk@debian.org>
Date: Sat, 5 Apr 2014 23:22:43 +0200
Message-id: <[🔎] 20140405212144.GA2128@jwilk.net>
Reply-to: Jakub Wilk <jwilk@debian.org>, 743694@bugs.debian.org
In-reply-to: <[🔎] 20140405110139.24807.60404.reportbug@haktar.debian.wgdd.de>
References: <[🔎] 20140405110139.24807.60404.reportbug@haktar.debian.wgdd.de>

Hi Daniel!

Thanks for your bug report.

* Daniel Leidert <daniel.leidert@wgdd.de>, 2014-04-05, 13:01:

Because the severity of these lintian checks is relevant to thedecision, if a package gets accepted into Debian I've added the FTPmasters team this report to get their point of view.

Not sure what you mean here. Would you care to elaborate why wouldftp-masters be concerned with Lintian tag severities?

- The severity chosen for these tags/checks is not justified by any ofour policies, neither the Debian policy,


Indeed. There's #726998 open to fix this.

not the best packaging practises


It is justified by MY best packaging practises. Isn't it enough? ;-P

- There is no technical nor social justification for this severity.Making it simple: either you have an internet connection or you don't.In the latter case there is no problem. If you have an internetconnection you either use a technical solution/ anonymizer to disableany "tracking" services or you don't. In both cases you don't have aproblem, either you decided you accept the existance of zero-byte gifs,cross-links, tracking services and stuffs or you already use atechnical solution to "disable" this. So making our package compliantto this new privacy-policy doesn't add any value to our users.

I wholeheartedly disagree, but I don't feel this is the good place toargue about it. Would you be so kind as to present your point of view in#726998 instead?

- I simply morally disagree with removing donation requests

Sure. But nobody is asking you to remove donation requests. Theprivacy-breach-donation description reads: “Please replace any scripts,images, or other remote resources with non-remote resources. It ispreferable to replace them with text and links but local copies of theremote resources are also acceptable as long as they don't also makecalls to remote services.”

I cannot argue with the position of the Debian project and IMHO neithercan you, so I would suggest a conservative choice for severity of thesetags as long as we don't have a common position of the project.


I agree that it was a mistake that these tags where added with “serious”

severity, and that “pedantic” would have been more appropriateinitially. But then, I have no doubts what will be the result of#726998, so we might as well keep it as is, to avoid severityserious→pedantic→serious ping-pongs.


--
Jakub Wilk

Reply to:

Follow-Ups:
- Bug#743694: Downgrade most of privacy-breach* tags from severity: error to pedantic
  - From: Daniel Leidert <daniel.leidert@wgdd.de>

References:
- Bug#743694: Downgrade most of privacy-breach* tags from severity: error to pedantic
  - From: Daniel Leidert <daniel.leidert@wgdd.de>

Prev by Date: Bug#743532: lintian: when to say: old-fsf-address-in-copyright-file
Next by Date: Bug#743532: lintian: when to say: old-fsf-address-in-copyright-file
Previous by thread: Bug#743694: Downgrade most of privacy-breach* tags from severity: error to pedantic
Next by thread: Bug#743694: Downgrade most of privacy-breach* tags from severity: error to pedantic
Index(es):
- Date
- Thread