[volunteergrid2-l] Gateway Passwords

Shawn Willden shawn at willden.org
Mon Jul 4 15:52:20 PDT 2011


In theory, I agree.

In practice, I suspect that a universal password will work fine, and it will
clearly be much simpler to implement.  If we ever need to change it, it's
simple enough to lock the offender(s) out of the wiki, then change the
password and post to the mailing list so users know to go get the new
password from the wiki.

And, if it turns out that the simple approach doesn't work, we can always
replace it with something more sophisticated -- and it's not unlikely that
by the time we need something better Tahoe will have solved the problem
better anyway.

That said, if someone is interested in building something better now, I'll
be happy to use it :-)

On Mon, Jul 4, 2011 at 10:13 AM, Jody Harris <jharris at harrisdev.com> wrote:

> I have a strong negative reaction to universal passwords. As a rule, I
> view "open secrets" with great suspicion.
>
> For one thing, we don't know that we won't eventually have a member
> who will abuse the grid. If we go with the "public secret" model,
> everyone will have to change their password if we are pushed to
> forcing one member out.
>
> There are other points of failure for the public secret model. Other views?
>
> j
> ----
> - Think carefully.
>
>
>
> On Sun, Jul 3, 2011 at 8:44 AM, Shawn Willden <shawn at willden.org> wrote:
> > Is there a reason we need per-user passwords?  It seems like the simplest
> > thing to do would just be to have a single password and put it on the
> > protected area of the wiki.
> >
> > On Sun, Jul 3, 2011 at 8:18 AM, Brad Rupp <bradrupp at gmail.com> wrote:
> >>
> >> One discussion that I do remember us having and that we never resolved
> was
> >> what do do with the passwords on the gateways.  My gateway has passwords
> for
> >> some of the users but not all.  The password was generated by me and
> sent
> >> privately to the particular user.  We discussed using Tahoe to
> distribute
> >> the passwords and then a script that could put them all together into a
> >> format that Apache could understand.    This would allow individual
> users
> >> the ability to generate and/or change their own password.  I think that
> is
> >> as far as we got on this.  Any other thoughts on this topic?
> >>
> >> Thanks,
> >>
> >> Brad
> >>
> >> _______________________________________________
> >> volunteergrid2-l mailing list
> >> volunteergrid2-l at tahoe-lafs.org
> >> http://tahoe-lafs.org/cgi-bin/mailman/listinfo/volunteergrid2-l
> >> http://bigpig.org/twiki/bin/view/Main/WebHome
> >
> >
> >
> > --
> > Shawn
> >
> > _______________________________________________
> > volunteergrid2-l mailing list
> > volunteergrid2-l at tahoe-lafs.org
> > http://tahoe-lafs.org/cgi-bin/mailman/listinfo/volunteergrid2-l
> > http://bigpig.org/twiki/bin/view/Main/WebHome
> >
> _______________________________________________
> volunteergrid2-l mailing list
> volunteergrid2-l at tahoe-lafs.org
> http://tahoe-lafs.org/cgi-bin/mailman/listinfo/volunteergrid2-l
> http://bigpig.org/twiki/bin/view/Main/WebHome
>



-- 
Shawn
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://tahoe-lafs.org/cgi-bin/mailman/private/volunteergrid2-l/attachments/20110704/2ab662c3/attachment.html>


More information about the volunteergrid2-l mailing list