Hi, Here's a preliminary draft: I think the best policy for the passwords is: 1) Passwords should never be transmitted as plain text, This includes IRC, email, http authentication. If so, The password should be invalidated and changed ASAP. 2) We can have an encrypted loopback filesystem on sina where we store all our passwords if a centralised storage is required. 4) Eacch arabeyes core member should have a gpg key to encrypt the passwords when emailing to another core member. 5) We all need to have the following password: MySQL root password http authentication passwords mailman passwords the root password for sina IRC channels password Please comment/suggest/flame/........ ;-) -- ---------------- -- Katoob Main Developer, Arabbix Maintainer. GNU/Linux registered user #224950 Proud Egyptian GNU/Linux User Group <www.eglug.org> Admin. Life powered by Debian, Homepage: www.foolab.org -- Don't send me any attachment in Micro$oft (.DOC, .PPT) format please Read http://www.gnu.org/philosophy/no-word-attachments.html Preferable attachments: .PDF, .HTML, .TXT Thanx for adding this text to Your signature
Attachment:
signature.asc
Description: Digital signature