3 == move all mail config into ldap ==
7 * user mail forwards, mail user +extension forwards, mail user +extension pipes, all of it.
8 * service domain aliases files
9 * service domains whitelists/blacklists/neverusers/RBLs
13 * update external puppet modules
14 ** xinetd used: own module, maybe move to puppetlabs xinetd module
15 * setup regression testing environment
19 ** new object classes? Something to differentiate
20 ** Would like to always add NM/DM/etc
21 ** Possibly porter box access for NM/DM ?
24 ** Clean up old expired entries
30 ** LDAP query interface read-only with hidden master
31 ** Privileged modify operations should only be allowed from lo.
34 ** Could we have one, please?
37 * move @d.o to MXes (different source IP to avoid RBL for important mail?)
40 * root everywhere, no authority to speak for team
43 * SSO for web apps (nagios, rt, wiki, etc)
44 * Tied to ud-ldap (but not LDAP password, dammit!)
46 == Munin replacement ==
47 * Something that is scriptable and scales
50 * Way to test IPv6, without duplicating all of our config
53 * It'd be nice if service names like db.d.o had sshfp records in DNS. This is tricky because some of the purpose service names are CNAMEs, but not all.