[Author Prev][Author Next][Thread Prev][Thread Next][Author Index][Thread Index]

[tor-bugs] #29677 [Internal Services/Tor Sysadmin Team]: evaluate password management options

To: undisclosed-recipients: ;
Subject: [tor-bugs] #29677 [Internal Services/Tor Sysadmin Team]: evaluate password management options
From: "Tor Bug Tracker & Wiki" <blackhole@xxxxxxxxxxxxxx>
Date: Thu, 07 Mar 2019 16:01:47 -0000
Auto-submitted: auto-generated
Delivered-to: archiver@xxxxxxxx
Delivery-date: Thu, 07 Mar 2019 11:01:56 -0500
List-archive: <http://lists.torproject.org/pipermail/tor-bugs/>
List-help: <mailto:tor-bugs-request@lists.torproject.org?subject=help>
List-id: "auto: Tor bug tracker status mails" <tor-bugs.lists.torproject.org>
List-post: <mailto:tor-bugs@lists.torproject.org>
List-subscribe: <https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-bugs>, <mailto:tor-bugs-request@lists.torproject.org?subject=subscribe>
List-unsubscribe: <https://lists.torproject.org/cgi-bin/mailman/options/tor-bugs>, <mailto:tor-bugs-request@lists.torproject.org?subject=unsubscribe>
Reply-to: no-reply@xxxxxxxxxxxxxx, tor-assistants@xxxxxxxxxxxxxx
Sender: "tor-bugs" <tor-bugs-bounces@xxxxxxxxxxxxxxxxxxxx>

#29677: evaluate password management options
-------------------------------------------------+-------------------------
     Reporter:  anarcat                          |      Owner:  tpa
         Type:  task                             |     Status:  assigned
     Priority:  Low                              |  Milestone:
    Component:  Internal Services/Tor Sysadmin   |    Version:
  Team                                           |
     Severity:  Major                            |   Keywords:
Actual Points:                                   |  Parent ID:
       Points:                                   |   Reviewer:
      Sponsor:                                   |
-------------------------------------------------+-------------------------
 during the [[org/meetings/2017Montreal/Notes/BusFactor]] session, one of
 the things that was discussed was the password management system that is
 (was?) stored in SVN. Specifically:


 {{{
 We need a better password management solution than the one we have in
 corporate SVN right now.
 We should look over if the password's in this database should be rotated.
 Figure out if the passwords for paypal have been rotated by Jon et al and
 ensure that it will be put in the password database. We should also look
 into the "paypal dongle" or 2-step authentication?
 }}}

 I have some experience reviewing password managers, so I might be able to
 provide some advice here if someone expands on the requirements and
 problems with the current approach.

--
Ticket URL: <https://trac.torproject.org/projects/tor/ticket/29677>
Tor Bug Tracker & Wiki <https://trac.torproject.org/>
The Tor Project: anonymity online

_______________________________________________
tor-bugs mailing list
tor-bugs@xxxxxxxxxxxxxxxxxxxx
https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-bugs

Follow-Ups:
- Re: [tor-bugs] #29677 [Internal Services/Tor Sysadmin Team]: evaluate password management options
  - From: Tor Bug Tracker & Wiki
- Re: [tor-bugs] #29677 [Internal Services/Tor Sysadmin Team]: evaluate password management options
  - From: Tor Bug Tracker & Wiki

Prev by Author: [tor-bugs] #29661 [Applications/Tor Browser]: Remove needs_information flag from ticket #25876.
Next by Author: Re: [tor-bugs] #29761 [Core Tor/Chutney]: Track chutney CI failures, and tweak the allow failures settings
Previous by thread: Re: [tor-bugs] #29393 [Internal Services/Tor Sysadmin Team]: Set up a loghost
Next by thread: Re: [tor-bugs] #29677 [Internal Services/Tor Sysadmin Team]: evaluate password management options
Index(es):
- Author
- Thread