System administration is a privilege as it gives access and control over many users resources and data. In order to best protect those assets, it is a normal procedure to remove people who do not seem to have need for that access anymore. Fedora Infrastructure policy is to remove special access to people who have not been using it in 60 days. Having gone through the user lists in wtmp, web logs and other data the following accounts will be removed from various system administration groups.
People who are removed may reapply later to the infrastructure program when they feel they need access again. Accounts will not be removed from the infrastructure mailing list.
Accounts will be removed by 2011-03-17 2000 UTC.
sysadmin akistler sysadmin benbeecher sysadmin billchen sysadmin ccielogs sysadmin dianam sysadmin ff4273 sysadmin ggruener sysadmin gsieranski sysadmin jasonwalsh sysadmin jaxjax sysadmin jeffreyt sysadmin jonrob sysadmin jorn sysadmin kolesovdv sysadmin marcelomgarcia sysadmin mkearey sysadmin nman64 sysadmin rordway sysadmin santosp sysadmin sbathe sysadmin thierry sysadmin valholla sysadmin wfoster sysadmin yingbull
cmsadmin cyrushmh cmsadmin itbegins cmsadmin matheo cmsadmin schendje cmsadmin teb cmsadmin wonderer
sysadmin-cloud arjunroy sysadmin-cloud hbrock sysadmin-cloud lutter sysadmin-cloud pmyers sysadmin-cloud sheid sysadmin-cloud slinabery sysadmin-cloud sseago
sysadmin-dba mikeb
sysadmin-devel davivercillo sysadmin-devel huzaifas sysadmin-devel itbegins sysadmin-devel ivazquez
sysadmin-hosted huzaifas sysadmin-hosted jaxjax
sysadmin-main mikeb
sysadmin-noc badone sysadmin-noc billchen sysadmin-noc ggruener sysadmin-noc huzaifas sysadmin-noc jdieter sysadmin-noc jorn sysadmin-noc kanarip sysadmin-noc rigeld2 sysadmin-noc sgrubb sysadmin-noc sheid sysadmin-noc wakko666 sysadmin-noc yingbull
sysadmin-spin kanarip sysadmin-spin maxamillion sysadmin-spin sandeen
sysadmin-test akistler sysadmin-test anujmore sysadmin-test badone sysadmin-test drak sysadmin-test emichan sysadmin-test huzaifas sysadmin-test itbegins sysadmin-test jhutar sysadmin-test jtluka sysadmin-test kanarip sysadmin-test mapleoin sysadmin-test marcelomgarcia sysadmin-test matheo sysadmin-test mbacovsk sysadmin-test mganisin sysadmin-test schendje sysadmin-test zc00gii
sysadmin-tools huzaifas sysadmin-tools santosp sysadmin-tools tgalyean
sysadmin-web adrian sysadmin-web akistler sysadmin-web asgeirf sysadmin-web badone sysadmin-web glezos sysadmin-web huzaifas sysadmin-web ivazquez sysadmin-web johnp sysadmin-web jokajak sysadmin-web jorn sysadmin-web mbacovsk sysadmin-web wakko666 sysadmin-web yingbull sysadmin-web zoglesby
On Wed, Mar 16, 2011 at 23:55, Adrian Reber adrian@lisas.de wrote:
On Wed, Mar 16, 2011 at 09:59:21PM -0600, Stephen John Smoogen wrote:
sysadmin-web adrian
Please do not delete my sysadmin-web account. I need for MirrorManager admin rights.
Ah ok thanks. Thanks I somehow missed that. I will review all the sysadmin-web accounts again to make sure I did not miss it again.
On Thu, Mar 17, 2011 at 2:13 PM, Stephen John Smoogen smooge@gmail.com wrote:
Ah ok thanks. Thanks I somehow missed that. I will review all the sysadmin-web accounts again to make sure I did not miss it again.
Not your fault, since the mirrormanager admin interface doesn't log in the places that you looked :). It's restricted to sysadmin-web in the code, and something that I completely forgot about too.
On 2011-03-17 04:01:11 PM, Jon Stanley wrote:
On Thu, Mar 17, 2011 at 2:13 PM, Stephen John Smoogen smooge@gmail.com wrote:
Ah ok thanks. Thanks I somehow missed that. I will review all the sysadmin-web accounts again to make sure I did not miss it again.
Not your fault, since the mirrormanager admin interface doesn't log in the places that you looked :). It's restricted to sysadmin-web in the code, and something that I completely forgot about too.
Anybody against making a mirroradmin group and restricting the permissions based on that instead? Or am I starting to go too crazy with the group separations :-)? How many people need mirrormanager access but don't need shell to stuff on MM? If it's not many, than we probably shouldn't bother with the extra group.
Thanks, Ricky
On Wed, Mar 16, 2011 at 09:59:21PM -0600, Stephen John Smoogen wrote:
System administration is a privilege as it gives access and control over many users resources and data. In order to best protect those assets, it is a normal procedure to remove people who do not seem to have need for that access anymore. Fedora Infrastructure policy is to remove special access to people who have not been using it in 60 days. Having gone through the user lists in wtmp, web logs and other data the following accounts will be removed from various system administration groups.
People who are removed may reapply later to the infrastructure program when they feel they need access again. Accounts will not be removed from the infrastructure mailing list.
Accounts will be removed by 2011-03-17 2000 UTC.
[...snip...]
cmsadmin cyrushmh cmsadmin itbegins cmsadmin matheo cmsadmin schendje cmsadmin teb cmsadmin wonderer
[...snip...]
What timing! At the Insight meeting on Monday we agreed to do this ourselves: http://meetbot.fedoraproject.org/fedora-meeting-1/2011-03-14/insight.2011-03...
If this is going to happen through a script, and not by someone personally having to do more work on our team's behalf, I'll just let it happen since it includes everyone we mentioned in our meeting. There are a couple people on this list who are actually involved with our group. But if they're not logging in on the instance to exercise this group membership, they probably don't need it right now. So no arguments here.
On Thu, Mar 17, 2011 at 07:55, Paul W. Frields stickster@gmail.com wrote:
On Wed, Mar 16, 2011 at 09:59:21PM -0600, Stephen John Smoogen wrote:
System administration is a privilege as it gives access and control over many users resources and data. In order to best protect those assets, it is a normal procedure to remove people who do not seem to have need for that access anymore. Fedora Infrastructure policy is to remove special access to people who have not been using it in 60 days. Having gone through the user lists in wtmp, web logs and other data the following accounts will be removed from various system administration groups.
People who are removed may reapply later to the infrastructure program when they feel they need access again. Accounts will not be removed from the infrastructure mailing list.
Accounts will be removed by 2011-03-17 2000 UTC.
[...snip...]
cmsadmin cyrushmh cmsadmin itbegins cmsadmin matheo cmsadmin schendje cmsadmin teb cmsadmin wonderer
[...snip...]
What timing! At the Insight meeting on Monday we agreed to do this ourselves: http://meetbot.fedoraproject.org/fedora-meeting-1/2011-03-14/insight.2011-03...
No just me clicking on things by hand. If you are going to do it, I will leave it to you.
If this is going to happen through a script, and not by someone personally having to do more work on our team's behalf, I'll just let it happen since it includes everyone we mentioned in our meeting. There are a couple people on this list who are actually involved with our group. But if they're not logging in on the instance to exercise this group membership, they probably don't need it right now. So no arguments here.
-- Paul W. Frields http://paul.frields.org/ gpg fingerprint: 3DA6 A0AC 6D58 FEC4 0233 5906 ACDB C937 BD11 3717 http://redhat.com/ - - - - http://pfrields.fedorapeople.org/ Red Hat Summit/JBossWorld -- Register now! http://.theredhatsummit.com _______________________________________________ infrastructure mailing list infrastructure@lists.fedoraproject.org https://admin.fedoraproject.org/mailman/listinfo/infrastructure
On Thu, Mar 17, 2011 at 12:14:22PM -0600, Stephen John Smoogen wrote:
On Thu, Mar 17, 2011 at 07:55, Paul W. Frields stickster@gmail.com wrote:
On Wed, Mar 16, 2011 at 09:59:21PM -0600, Stephen John Smoogen wrote:
System administration is a privilege as it gives access and control over many users resources and data. In order to best protect those assets, it is a normal procedure to remove people who do not seem to have need for that access anymore. Fedora Infrastructure policy is to remove special access to people who have not been using it in 60 days. Having gone through the user lists in wtmp, web logs and other data the following accounts will be removed from various system administration groups.
People who are removed may reapply later to the infrastructure program when they feel they need access again. Accounts will not be removed from the infrastructure mailing list.
Accounts will be removed by 2011-03-17 2000 UTC.
[...snip...]
cmsadmin cyrushmh cmsadmin itbegins cmsadmin matheo cmsadmin schendje cmsadmin teb cmsadmin wonderer
[...snip...]
What timing! At the Insight meeting on Monday we agreed to do this ourselves: http://meetbot.fedoraproject.org/fedora-meeting-1/2011-03-14/insight.2011-03...
No just me clicking on things by hand. If you are going to do it, I will leave it to you.
OK, to reduce confusion about who's got the ball -- I will do it.
If this is going to happen through a script, and not by someone personally having to do more work on our team's behalf, I'll just let it happen since it includes everyone we mentioned in our meeting. There are a couple people on this list who are actually involved with our group. But if they're not logging in on the instance to exercise this group membership, they probably don't need it right now. So no arguments here.
infrastructure@lists.fedoraproject.org
-
Adrian Reber -
Jon Stanley -
Paul W. Frields -
Ricky Zhou -
Stephen John Smoogen