[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Preliminary passwords policy.


Here's a preliminary draft:

I think the best policy for the passwords is:
1) Passwords should never be transmitted as plain text, This includes IRC, email, http authentication.
If so, The password should be invalidated and changed ASAP.
2) We can have an encrypted loopback filesystem on sina where we store all our passwords if a centralised storage is required.
4) Eacch arabeyes core member should have a gpg key to encrypt the passwords when emailing to another core member.
5) We all need to have the following password:
   MySQL root password
   http authentication passwords
   mailman passwords
   the root password for sina
   IRC channels password

Please comment/suggest/flame/........ ;-)

-- Katoob Main Developer, Arabbix Maintainer.
GNU/Linux registered user #224950
Proud Egyptian GNU/Linux User Group <www.eglug.org> Admin.
Life powered by Debian, Homepage: www.foolab.org
Don't send me any attachment in Micro$oft (.DOC, .PPT) format please
Read http://www.gnu.org/philosophy/no-word-attachments.html
Preferable attachments: .PDF, .HTML, .TXT
Thanx for adding this text to Your signature

Attachment: signature.asc
Description: Digital signature