Add additional TODOs for initial keying and contacting owners

author: Russ Allbery <rra@stanford.edu> 2012-08-30 13:28:19 -0700
committer: Russ Allbery <rra@stanford.edu> 2012-08-30 13:28:19 -0700
commit: 1ef5fb36c40daf0439a1c786796fa6e4628bc212 (patch)
tree: 11358f46c41f36fc5947269781bfa2a712972a7f /TODO
parent: 41eb131dc6ae8c8f5aead797703fd12aaa59a9d9 (diff)
1 files changed, 10 insertions, 0 deletions
diff --git a/TODO b/TODO
index dd4d15e..1815d0d 100644
--- a/TODO
+++ b/TODO
@@ -59,6 +59,11 @@ Server Interface:
  * WALLET-22: Remove the hard-coded ADMIN ACL in the server with something
    more configurable, perhaps a global ACL table or something.
 
+ * WALLET-63: Support leap-of-faith keying of systems by registering an
+   object for one-time download (ideally from a specific IP address) and
+   then allowing that object to be downloaded anonymously from that IP.
+   Relies on support for Kerberos anonymous authentication.
+
 ACLs:
 
  * WALLET-23: Error messages from ACL operations should refer to the ACLs
@@ -156,6 +161,11 @@ Reports:
    Enhance it to report on any sort of object, not just on keytabs, and to
    give numbers on downloaded versus not downloaded objects.
 
+ * WALLET-62: Write a tool to mail the owners of wallet objects, taking
+   the list of objects and the mail message to send as inputs.  This could
+   possibly use the notification service, although a version that sends
+   mail directly would be useful external to Stanford.
+
 Administrative Interface:
 
  * WALLET-42: Add a function to wallet-admin to purge expired entries.
author	Russ Allbery <rra@stanford.edu>	2012-08-30 13:28:19 -0700
committer	Russ Allbery <rra@stanford.edu>	2012-08-30 13:28:19 -0700
commit	1ef5fb36c40daf0439a1c786796fa6e4628bc212 (patch)
tree	11358f46c41f36fc5947269781bfa2a712972a7f /TODO
parent	41eb131dc6ae8c8f5aead797703fd12aaa59a9d9 (diff)