diff options
-rw-r--r-- | website/bugs/monkeysphere-gen-subkey-fails-without-agent.mdwn | 6 | ||||
-rw-r--r-- | website/bugs/multiple-hostnames.mdwn | 13 | ||||
-rw-r--r-- | website/bugs/setup-test-server-for-public.mdwn | 16 |
3 files changed, 35 insertions, 0 deletions
diff --git a/website/bugs/monkeysphere-gen-subkey-fails-without-agent.mdwn b/website/bugs/monkeysphere-gen-subkey-fails-without-agent.mdwn index 28556e3..7e735d2 100644 --- a/website/bugs/monkeysphere-gen-subkey-fails-without-agent.mdwn +++ b/website/bugs/monkeysphere-gen-subkey-fails-without-agent.mdwn @@ -129,3 +129,9 @@ fine. That should make this bug fairly easy to fix, so I'll get on it. -- BJ (jgr) + +--- + +Alternately, we could use `--passwd-fd` and `ssh-agent`, along the +lines i proposed [for handling passphrase-locked secret +keys](handle-passphrase-locked-secret-keys). diff --git a/website/bugs/multiple-hostnames.mdwn b/website/bugs/multiple-hostnames.mdwn index 5668aae..7597af5 100644 --- a/website/bugs/multiple-hostnames.mdwn +++ b/website/bugs/multiple-hostnames.mdwn @@ -22,3 +22,16 @@ we will continue to rely on the "publish-key" subcommand to actually publish all changes to the keys. -- BJ (jgr) + +--- + +I think [when we reorganize the `monkeysphere-server` +shortcuts](reorganize-monkeysphere-server-shortcuts) it'll make it +clearer what the right interface should be. + +As for what should actually happen, i think that the server should +actively revoke old User IDs, rather than removing them. It should +probably prompt the administrator to re-publish the host key as well, +to ensure that the new User IDs are published. + + --dkg diff --git a/website/bugs/setup-test-server-for-public.mdwn b/website/bugs/setup-test-server-for-public.mdwn index 2ec2a24..aa6da61 100644 --- a/website/bugs/setup-test-server-for-public.mdwn +++ b/website/bugs/setup-test-server-for-public.mdwn @@ -51,3 +51,19 @@ So do we agree that george is doing what we want, and we can therefore close this bug? -- BJ (jgr) + +--- + +I'm fine with closing this bug, unless we want to set up the limited +shell access/welcome letter like i described above. If we want to do +that, it'd be worth keeping it open until those scripts are written. + +I envision a script you'd invoke like: + + root@george# addmsuser foo 'Foo T. Bar <foo@example.org>' + +Which would create the `foo` account, populate +`~foo/.config/monkeysphere/authorized_user_ids`, make a note in a log +someplace, and send a welcome letter. + +--dkg |