diff options
| author | Jameson Graef Rollins <jrollins@phys.columbia.edu> | 2008-06-23 19:33:54 -0400 |
|---|---|---|
| committer | Jameson Graef Rollins <jrollins@phys.columbia.edu> | 2008-06-23 19:33:54 -0400 |
| commit | 91bf57bac7bed32937c13595044158007e7b5812 (patch) | |
| tree | 4e6aaac09c2f1c0a581d3c541b13840b494d6355 /doc | |
| parent | 70cf71b1d716e2ec16fae03cd89da3f088f5f4c4 (diff) | |
| parent | abedea11eca1cf2294196cb6cd39d40f4877f7d4 (diff) | |
Merge commit 'dkg/master'
Diffstat (limited to 'doc')
| -rw-r--r-- | doc/TODO | 13 |
1 files changed, 12 insertions, 1 deletions
@@ -114,7 +114,7 @@ File bug against seahorse about how, when creating new primary keys, File bug against enigmail about lack of ability to create subkeys. -Priviledge separation: monkeysphere user to handle authn keyring and +Privilege separation: monkeysphere user to handle authn keyring and generate authorized_keys file (which would be moved into place by root). Host keyring would be owned by root. @@ -122,3 +122,14 @@ Check permissions of authorized_user_ids file to be writable only by user and root (same as authorized_keys) Improve function that sets owner trust for keys in server keychain. + +Test and document what happens when any filesystem that the + monkeysphere-server relies on and modifies (/tmp, /etc, and /var?) + fills up. + +Consider moving monkeysphere-managed files (gpg homedirs? temporary + files?) into /var. + +Optimize keyserver access, particularly on monkeysphere-server + update-users -- is there a way to query the keyserver all in a + chunk? |