X-Git-Url: https://codewiz.org/gitweb?a=blobdiff_plain;f=doc%2FTODO;h=e1e90f0ec84994a02ff060e4fe81250f6ec43a43;hb=f85884c451f77afa95183da36c33dbc334d1a14b;hp=71b9582273d3f77c441286a4be6db732f2af7326;hpb=bee2295c0e205787584788d1e611e92ec6b0fe96;p=monkeysphere.git

diff --git a/doc/TODO b/doc/TODO
index 71b9582..e1e90f0 100644
--- a/doc/TODO
+++ b/doc/TODO
@@ -113,3 +113,23 @@ File bug against seahorse about how, when creating new primary keys,
    key.
 
 File bug against enigmail about lack of ability to create subkeys.
+
+Privilege separation: monkeysphere user to handle authn keyring and
+   generate authorized_keys file (which would be moved into place by
+   root).  Host keyring would be owned by root.
+
+Check permissions of authorized_user_ids file to be writable only by
+   user and root (same as authorized_keys)
+
+Improve function that sets owner trust for keys in server keychain.
+
+Test and document what happens when any filesystem that the
+   monkeysphere-server relies on and modifies (/tmp, /etc, and /var?)
+   fills up.
+
+Consider moving monkeysphere-managed files (gpg homedirs? temporary
+   files?) into /var.
+
+Optimize keyserver access, particularly on monkeysphere-server
+   update-users -- is there a way to query the keyserver all in a
+   chunk?