-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1
so, sometimes we've had problems with the Toolserver that required an admin, but an admin wasn't always around. some of these problems are complicated, but others are simple, and can be fixed by e.g. killing a process, or rebooting a server. to reduce the chance that something like this occurs when no admins are around, i have come up with an idea for a new class of user, which i've termed "Toolserver custodians".
custodians would have a limited set of admin privileges, which i imagine might include:
* rebooting login/web servers * killing user processes * viewing and killing user queries on MySQL servers
because none of these rights allow access to privileged information, we can assign them more freely than root access, and without requiring consent from the Wikimedia Foundation.
does this seem like something that would be helpful? and, if we introduced it, would anyone be interested in such privileges? (we would probably require a good knowledge of Unix and at least some experience with system administration.)
- river.