One other policy from Linux that would be worth enforcing is that the default config value for every new feature should be NO. The problem is too often developers refuse/forget to test if the code still builds without their new feature.