[Author Prev][Author Next][Thread Prev][Thread Next][Author Index][Thread Index]

[or-cvs] r19212: {torvm} TODO cleanup; mark least privilege user setup as high priori (torvm/trunk)

To: or-cvs@xxxxxxxxxxxxx
Subject: [or-cvs] r19212: {torvm} TODO cleanup; mark least privilege user setup as high priori (torvm/trunk)
From: coderman@xxxxxxxx
Date: Tue, 31 Mar 2009 21:11:32 -0400 (EDT)
Delivered-to: archiver@xxxxxxxx
Delivered-to: or-cvs-outgoing@xxxxxxxx
Delivered-to: or-cvs@xxxxxxxx
Delivery-date: Tue, 31 Mar 2009 21:11:35 -0400
Reply-to: or-dev@xxxxxxxxxxxxx
Sender: owner-or-cvs@xxxxxxxxxxxxx

Author: coderman
Date: 2009-03-31 21:11:32 -0400 (Tue, 31 Mar 2009)
New Revision: 19212

Modified:
   torvm/trunk/TODO
Log:
TODO cleanup; mark least privilege user setup as high priority (for 0.0.2 this week) and remove completed tasks.

Modified: torvm/trunk/TODO
===================================================================
--- torvm/trunk/TODO	2009-03-31 20:38:26 UTC (rev 19211)
+++ torvm/trunk/TODO	2009-04-01 01:11:32 UTC (rev 19212)
@@ -49,9 +49,6 @@
      capability for situations where upgraded packages fail.
 
    Tor VM kernel networking improvements
-   . Implement tarpit target default until Tor is successfully up and
-     running to avoid cached failures and other annoying side effects
-     of immediate RST.
    - Collaborate with ioerror on making the iptables rules in torwall
      compatible with Tor VM (and other implementations) to avoid
      duplication and oversights where possible.
@@ -74,8 +71,11 @@
    - Pass ARP parameters to VM kernel for faster IP setup.
 
    Tor VM controller hardening
-   - Provide at least minimal privilege separation for processes by
+   * Provide at least minimal privilege separation for processes by
      user account. (right now this is a manual process)
+     Use the Windows Station and Desktop functions to manage anon user
+     creation, logon with desktop, and switch to desktop for better
+     usability and less confusion.
    ? Integrate with SteadyState via registry backed configuration and
      provide deployment configuration scripts.
    ? Take advantage of fine grained authorization and permissions in
@@ -84,9 +84,6 @@
      line for use in stronger seeding of first-run kernel random pool.
 
    Vidalia integration
-   . Clean up implementation of wixtool for upstream merge. Missing
-     ability to set defaults for missing tags and remove duplicate
-     tag IDs in documents.
    - Implement random control port password generation and delivery to
      Tor VM kernel and Vidalia using standard input file handles.
    - Implement external Tor based bundle support in a proper manner

Prev by Author: [or-cvs] r19186: {torvm} Torbutton is now 1.2.1 not 1.2.0-dev. Now the bundles are ha (torvm/trunk/build/win32/files)
Next by Author: [or-cvs] r19129: {website} Add a minimal Vidalia website. Someone will need to move som (in website/trunk/vidalia: . en)
Previous by thread: [or-cvs] r19211: {torflow} Add a closed member found missing by Kevin Bauer. (torflow/trunk/CircuitAnalysis/OPAddon)
Index(es):
- Author
- Thread