On Wed, Oct 09, 2013 at 09:05:14PM -0700, Josh Andler wrote:
On Wed, Oct 9, 2013 at 8:54 PM, Bryce W. Harrington <b.harrington@...61...> wrote:
There must be a best practice; we're hardly the only FOSS project needing to manage passwords. Anyone seen how other projects handle it?
I've never talked to him before, but I'm kind of tempted to email Ton Roosendaal to see if he might have the time or inclination to give us some insight on how Blender handles these things.
I've seen a few references to some open source software called KeePass for shared secret management, but I know nothing about it.
http://en.wikipedia.org/wiki/KeePass
OTOH, I suppose we could keep it simple and just place them in a gpg encrypted text files (one file per password) located on some ssh server we all have access to.
Seems sensible. Have you talked with them about this?
I have not. I honestly didn't do this yet just because if people aren't interested, it's not worth wasting their time. If people are, the worst that can happen is that they say it's outside the scope of what they offer.
I seem to recall mentalguy asking about this some time ago, in association with the domain registration. Kees Cook and Ted Gould may also have some interest (or at least, they did in the past).
Why don't you go ahead and inquire. If it's not a service they provide, or if they don't do anything special we can set something up ourselves.
Bryce