Review and improve admins' operational security “best practices”
From Message-ID: <firstname.lastname@example.org> and follow-ups, sent to the tdf-admin list:
However, we admin have zero excuse to use weak (aka brute-forceable) passwords.
Right. And with the overall cleanup / consolidation we're doing, some amount of enforcement / express self-commitment from the admins should be in order?
Perhaps we could discuss, share knowledge, learn from each other, and later draft a couple of “best practices” to be signed by all current and future admins?
We can use this ticket for the discussion.