KVM servers and end users
We have discovered that a number of KVM guests have been configured to allow
shell access to, admittedly limited sets of, end users. Perhaps we never
articulated this more widely, but our trust model on the KVM servers has
always been that such end user access should only be given in extremis.
For discussion...
Machines on develop release
Please only switch user machines from stable to develop when absolutely necessary. It is rarely essential as there is often another way the same goal can be achieved with only a small amount of extra effort. When necessary the switch should be done for the shortest time possible. The change to the LCFG profile MUST always be associated with a reminder comment which specifies the reason for the change, who is responsible and when it can be reverted.
