A common topic in various posts that try to describe how to do something is a “you should think about the security implications before doing this” type topic (essentially a disclaimer).
I think it would make sense if we would write up one page explaining this situation/disclaimer to people, then have a short standardized one line with a link to the explanation that everyone could throw in their posts (where appropriate).
What do people think of this idea? What all should be on the page?
With a single collectivized version, we could include much more then a normal posts disclaimer and spend time making it much more clear.
I think one thing that would be worth including would be mentioning things like how it’s preferable to learn and make your mistakes on a system that does not have security critical data on it, and not do your learning on a security critical production system.
I ran into this situation when trying to write up how to use policies, and started to make a note “that changing the policies without thinking through the security implications of your changes could lead to you compromising the security of your system”
If your interested, my writeup (so far) about how to use policies is at:
The intro to this guide would be related and worth considering adding parts of (asuming that someone other then just me thinks this is a good idea overall
