CAcert System Admins discussion list

[Wytze van der Raay <wytze AT deboca.net>]

Hi Evaldo,

Evaldo Gardenali schreef:
> ...
> Motion: To approve preparation of geographic user and assurer density
> reports, suited to the evaluation by the assurance officer of areas that
> need special seeding, halt TTP program to strengthen the web of trust,
> or encourage or disencourage super-assurer status. This report should
> also be published, following our openness guidelines, for users to plan
> where to get assured or where to go help seed the web of trust.
> 
> System Administrators:
> 
> Please advise on the possibility of such reports (one summarized reply
> back to board please). Greg's SQL sample should be treated as an
> example, and proper sanitization or re-engineering should occur if
> appropriate. Developers should get contacted for a more permanent and
> secure solution (for example routinely extraction of report data without
> the need for raw sql access)

I'd like to reverse this, to clarify the position of system administrators
versus developers, and to get in line with the CAcert Security Policy:

  Developers: please advise on the possibility of such reports etc.
  System administrators should be contacted if necessary for advise on
  appropriate system integration, and once a solution has been implemented
  and approved, for activating it on the production server.

Regards,
-- wytze

Attachment: smime.p7s
Description: S/MIME Cryptographic Signature