Search RPD Archives
[members-discuss] [rpd] Privacy breach of nomcom2015's Mailing List
owen at delong.com
Sun Jun 7 16:29:43 UTC 2015
> On Jun 7, 2015, at 05:35 , Noah Maina <mainanoa at gmail.com> wrote:
> On 7 Jun 2015 14:24, "Boubakar Barry" <boubakarbarry at gmail.com <mailto:boubakarbarry at gmail.com>> wrote:
> > The most odd thing in this is the sharing of the archives with _selected_ Board members. If there were no malicious intent, alerting the CEO would have sufficed.
> Of course that was rather odd....they should never have shared anything no matter how bad with the said board members.....
> Under normal organisation operational structure, stuff talk to their managers who then talk to the CEO, who in turn has an audience with the directors or the board if need be….
The person who obtained the data was not AfriNIC staff. They were an independent member of the community. Given that, how would you fit such a person into that chain of command?
> And if the above chain is not followed then you end up with a situation where the Chair or whoever speaks for the organisation headlining a "privacy breach" and the management reporting "Configuration Errors".
Again, Noah, this was in fact a privacy breach which resulted from a configuration error. I do not see why you are so determined to claim a difference which does not exist.
I do not entirely agree with the actions of the community member in question as I agree that disclosure to select board members was inappropriate, but the intent was honorable and not mischievous. The absolute worst that can be legitimately said of the person in question it that he exercised poor judgment.
-------------- next part --------------
An HTML attachment was scrubbed...
More information about the RPD