Hi, Quoting Ole Streicher (2016-11-17 10:11:42) > Paul Wise <pabs@debian.org> writes: > > AFAICT we don't have an official statement about this, but: > > https://lists.debian.org/debian-policy/2008/02/msg00060.html [...] > > Is there a reason why it is not there? I guess because nobody wrote a patch for policy yet? > > Debian packages must respect sysadmin and user privacy and encourage > > sysadmins and users to respect the privacy of everyone. So, disabled by > > default, informed consent and don't manipulate people into destroying their > > privacy with click-through stuff. Some discussion of click-through culture > > is in the recent episode of FaiF: > > > > http://faif.us/cast/2016/nov/01/0x5E/ > > I observe that the common opinion in Debian is strictly pro privacy -- > but why it is not in the policy? It is quite hard to discuss those > topics with upstream if there is no reference to a settled opinion, but > rather a number of lengthy discussions. I suggest you submit a patch to #726998 and we continue discussion there. The wording should reflect the difference between programs where it should be obvious for the user that information sent to remote parties (firefox, wget, curl, youtube-dl) and programs which do so as a convenience feature but without having their functionality depend on it (auto updaters, reporting usage statistics). The user should explicitly asked for their consent in the latter case. Thanks! cheers, josch
Attachment:
signature.asc
Description: signature