--- trunk/Mix/TODO 2002/09/04 02:27:28 211 +++ trunk/Mix/TODO 2002/09/06 11:34:10 219 @@ -7,11 +7,25 @@ * do full regression tests on as many platforms possible + list only these platforms as supported * resolve any new critical issues -* keylifetime needs to be documented once its finished +* keylifetime and key{grace,overlap}period needs to be documented once + it's finished; seems to work nicely for mixmaster keys so far, pgp + still giving problems + - move self/binding signatures to the secret keyrings + - display expiration date in ascii summary of keys + - if there is no expiration date on existing keys, + do _not_ add one, if there already is an expiration + date on they key, do _not_ change it + - only list the latest key of each type in pgpkeys.txt + (similar to how weasel's patch does it with mix keys) + - make keymgt(0|1) create new pgp keys if old ones are + expires/due to expire + - for later: do not encrypt to expired keys, do not + decrypt to keys that expired longer than graceperiod ago +* saner usage of /dev/[u]random is required +* document DUMMYMAILINPROBABILITY / DUMMYMAILOUTPROBABILITY Items for 3.0 or 3.0.1 -* create internally-generated dummy messages * support a list of remailers not to be selected as *. * allow for verification of clearsigned OpenPGP messages * AES support -- requires OpenSSL 0.9.7 @@ -22,20 +36,17 @@ * documentation issues resolved + mpgp man page * check and enforce OpenPGP key expiration date +* find bug that is causing t* files to linger * further debugging Further wishlist: -* set an expiration date on OpenPGP keys -* investigate whether and how it is feasible to - add expiration/creation dates to mixmaster keys - if feasible, implement setting and checking * Automatic key handling: + create new PGP keys automatically if current keys are about to expire + requires implementing key signing, key deletion + create new mixmaster keys automatically - if necessary + if necessary (almost done, see keylifetime etc above) + Automatically announce new keys? - implement remailer-key signing? - if yes, which key?