Improved gen-key function for server.

[monkeysphere.git] / doc / TODO

diff --git a/doc/TODO b/doc/TODO
index 71b9582273d3f77c441286a4be6db732f2af7326..4f32bb065727653c0fa8c83dceb6bb7e69bb1bec 100644 (file)
--- a/doc/TODO
+++ b/doc/TODO
@@ -113,3 +113,12 @@ File bug against seahorse about how, when creating new primary keys,
    key.
 
 File bug against enigmail about lack of ability to create subkeys.
+
+Priviledge separation: monkeysphere user to handle authn keyring and
+   generate authorized_keys file (which would be moved into place by
+   root).  Host keyring would be owned by root.
+
+Check permissions of authorized_user_ids file to be writable only by
+   user and root (same as authorized_keys)
+
+Improve function that sets owner trust for keys in server keychain.