On Wed, May 28, 2025 at 02:22:00PM +0000, Holger Levsen wrote:
Most of these I also very much agree with, however I doubt that *we* want to hide e-mail addresses from public (unauthenticated) web browsing. In my book the open development model of Debian is tied to the fact that we the developers are responsible *and* reachable. Our users can see who made the distribution they are using. That is a feature.
Developers _maybe_, but the BTS mostly doesn't distinguish between developers and users (except for maintainer addresses). And at least for users who've helped us out without realizing the consequences, it's arguably not exactly in the spirit of the GDPR, which I don't feel comfortable with in this day and age.
I've also seen very very few complaints about the fact that the BTS shows email addresses if submitters and contributors. And I'm definitly not aware that we identified this as a problem!
owner@bugs gets complaints about this fairly often.
Also, I don't really see how to keep all the e-mail features it currently offers, while hiding email addresses. I quite often look up email addresses in bugs and contact people directly, definitly more than once per months.
One possibility would be for the BTS to offer a way to follow up privately, similar to the NNNNN-submitter@ addresses. (This idea would obviously need refinement.)
-- Colin Watson (he/him) [cjwat...@debian.org]
