On Wed, Oct 09, 2013 at 09:05:14PM -0700, Josh Andler wrote:
On Wed, Oct 9, 2013 at 8:54 PM, Bryce W. Harrington
> There must be a best practice; we're hardly the only FOSS project
> needing to manage passwords. Anyone seen how other projects handle it?
I've never talked to him before, but I'm kind of tempted to email Ton
Roosendaal to see if he might have the time or inclination to give us
some insight on how Blender handles these things.
I've seen a few references to some open source software called KeePass
for shared secret management, but I know nothing about it.
OTOH, I suppose we could keep it simple and just place them in a gpg
encrypted text files (one file per password) located on some ssh server
we all have access to.
> Seems sensible. Have you talked with them about this?
I have not. I honestly didn't do this yet just because if people
aren't interested, it's not worth wasting their time. If people are,
the worst that can happen is that they say it's outside the scope of
what they offer.
I seem to recall mentalguy asking about this some time ago, in
association with the domain registration. Kees Cook and Ted Gould may
also have some interest (or at least, they did in the past).
Why don't you go ahead and inquire. If it's not a service they provide,
or if they don't do anything special we can set something up ourselves.