1 Next-Steps Monkeysphere Projects:
2 ---------------------------------
4 Handle unknown hosts in such a way that they're not always removed
5 from known_hosts file. Ask user to lsign the host key?
7 Handle multiple multiple hostnames (multiple user IDs?) when
8 generating host keys with gen-key.
10 Make sure alternate ports are handled for known_hosts.
12 Add environment variables sections to man pages.
14 Script to import private key into ssh agent.
16 Provide a friendly interactive UI for marginal or failing client-side
17 hostkey verifications. Handle the common cases smoothly, and
18 provide good debugging info for the unusual cases.
20 Make sure onak properly escapes user IDs with colons in them.
22 Build a decent, presentable web site for documentation, evangelism,
23 etc. Include a mention of how to report trouble or concerns.
25 Create ssh2openpgp or convert to full-fledged keytrans.
27 Resolve the bugs listed in openpgp2ssh(1):BUGS.
29 Understand and document alternate trustdb models.
31 Understand and document the output of gpg --check-trustdb:
32 gpg: 3 marginal(s) needed, 1 complete(s) needed, PGP trust model
33 gpg: depth: 0 valid: 2 signed: 20 trust: 0-, 0q, 0n, 0m, 0f, 2u
34 gpg: depth: 1 valid: 20 signed: 67 trust: 15-, 0q, 1n, 3m, 1f, 0u
35 gpg: next trustdb check due at 2008-10-09
37 Understand and document the numeric values between sig! and the keyid
38 in "gpg --check-sigs $KEYID" . Compare with the details found from
39 "gpg --with-colons --check-sigs $KEYID". This has to do with trust
42 Fix gpg's documentation to clarify the difference between validity and
43 ownertrust. Include better documentation for trust signatures.
45 Make it easier to do domain-relative ssh host trust signatures with
46 gnupg. (e.g. "i trust Jamie McClelland (keyID 76CC057D) to properly
47 identify ssh servers in the mayfirst.org domain") See:
48 http://tools.ietf.org/html/rfc4880#section-5.2.3.21 and grep for
51 Fix the order of questions when user does a tsign in gpg or gpg2.