Skip to main content
[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index] [List Home]
Re: [cross-project-issues-dev] [aeri] Change to how clients decide which error reports to send

On 21 Oct 2016, at 15:28, Gunnar Wagenknecht <gunnar@xxxxxxxxxxxxxxx> wrote:

Hi Marcel,

On 21 Oct 2016, at 12:24, Marcel Bruch <marcel.bruch@xxxxxxxxxxxxxx> wrote:
I’m looking for your input on the second part: whether sending the fingerprint of an error report to eclipse.org before the user explicitly agrees to send the error itself is considered a privacy issue. My personal take is that the fingerprint itself does not contain any reasonable private information. However, under some conditions committers may be able to “see” which errors a user hits on his machine even if he does not send the error report ( IFF we'd send the reporter id along with the fingerprint or would track the reporter’s IP address - which we do not do!).

I find the last sentence confusing. :)

Can you clarify:
- what is a reporter id?

A standard UUID. We generate it once per user-home. We use that information to allow searches like “Give me all error reports ±5 minutes around this error report” or to collect how many users actually hit a problem (to assess its severity) etc.

- how is it related to the proposal, i.e. checking for known error information as fingerprints?

I used this to illustrate when (I think) sending a fingerprint may reveal some information about the user.

- why is it necessary for the proposal?

This is not required. It was more an example to illustrate when sending a fingerprint may reveal something about the reporter. The question is, whether this pair <reporter-id, error-fingerprint> is considered sensitive already.

- is the reporter id an "opt-in”?

Yes and no. You opt in to send error reports w/ a uuid when you enable AERI (announced and implemented so from day one).

FWIW, there is a change in progress that allows users to generate a fresh UUID on every eclipse startup.


Does that answer all your questions?




Thanks!

-Gunnar

_______________________________________________
cross-project-issues-dev mailing list
cross-project-issues-dev@xxxxxxxxxxx
To change your delivery options, retrieve your password, or unsubscribe from this list, visit
https://dev.eclipse.org/mailman/listinfo/cross-project-issues-dev

-- 
Codetrails GmbH
The knowledge transfer company

Robert-Bosch-Str. 7, 64293 Darmstadt
Phone: +49-6151-276-7092
Mobile: +49-179-131-7721
http://www.codetrails.com/

Managing Director: Dr. Marcel Bruch
Handelsregister: Darmstadt HRB 91940

Back to the top