From mboxrd@z Thu Jan 1 00:00:00 1970 Received: from lists.gentoo.org ([140.105.134.102] helo=robin.gentoo.org) by nuthatch.gentoo.org with esmtp (Exim 4.50) id 1EdW8T-000501-3U for garchives@archives.gentoo.org; Sat, 19 Nov 2005 17:04:21 +0000 Received: from robin.gentoo.org (localhost [127.0.0.1]) by robin.gentoo.org (8.13.5/8.13.5) with SMTP id jAJH3bf3015041; Sat, 19 Nov 2005 17:03:37 GMT Received: from smtp.gentoo.org (smtp.gentoo.org [134.68.220.30]) by robin.gentoo.org (8.13.5/8.13.5) with ESMTP id jAJH1o2X007742 for <gentoo-dev@lists.gentoo.org>; Sat, 19 Nov 2005 17:01:50 GMT Received: from jaguar.lieber.org ([217.160.252.168]) by smtp.gentoo.org with esmtp (Exim 4.43) id 1EdW62-00082k-62 for gentoo-dev@lists.gentoo.org; Sat, 19 Nov 2005 17:01:50 +0000 Received: from localhost (localhost [127.0.0.1]) by jaguar.lieber.org (Postfix) with ESMTP id CC42929D724 for <gentoo-dev@gentoo.org>; Sat, 19 Nov 2005 17:06:17 +0000 (UTC) Received: from jaguar.lieber.org ([127.0.0.1]) by localhost (jaguar.lieber.org [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id 25866-15 for <gentoo-dev@gentoo.org>; Sat, 19 Nov 2005 17:06:15 +0000 (UTC) Received: by jaguar.lieber.org (Postfix, from userid 1001) id 7DD9B29C101; Sat, 19 Nov 2005 17:06:15 +0000 (UTC) Date: Sat, 19 Nov 2005 17:06:15 +0000 From: Kurt Lieber <klieber@gentoo.org> To: gentoo-dev@lists.gentoo.org Subject: [gentoo-dev] implementation details for GLEP 41 Message-ID: <20051119170615.GW12982@mail.lieber.org> Precedence: bulk List-Post: <mailto:gentoo-dev@lists.gentoo.org> List-Help: <mailto:gentoo-dev+help@gentoo.org> List-Unsubscribe: <mailto:gentoo-dev+unsubscribe@gentoo.org> List-Subscribe: <mailto:gentoo-dev+subscribe@gentoo.org> List-Id: Gentoo Linux mail <gentoo-dev.gentoo.org> X-BeenThere: gentoo-dev@gentoo.org Reply-to: gentoo-dev@lists.gentoo.org Mime-Version: 1.0 Content-Type: multipart/signed; micalg=pgp-sha1; protocol="application/pgp-signature"; boundary="YuJye9aIuN0w6xGV" Content-Disposition: inline X-GPG-Key: http://www.lieber.org/kurtl.pub.gpg User-Agent: Mutt/1.5.8i X-Virus-Scanned: amavisd-new at lieber.org X-Spam-Status: No, score=-5.896 tagged_above=-999 required=5.5 tests=[ALL_TRUSTED=-3.3, AWL=0.004, BAYES_00=-2.599] X-Spam-Score: -5.896 X-Spam-Level: X-Archives-Salt: 9aedb9db-f62c-4fe5-9aeb-7707124a5504 X-Archives-Hash: 1133dd4c17c5ec377611fc5725386cb7 --YuJye9aIuN0w6xGV Content-Type: text/plain; charset=iso-8859-1 Content-Disposition: inline Content-Transfer-Encoding: quoted-printable Ignoring the yellow star issue, there are a few implementation concerns/impossibilities with GLEP 41 in its current form.=20 For instance, the way GLEP 41 suggests doing r/o cvs is not going to work. It suggests using a single account and placing an SSH key for each arch tester in that account's ~/.ssh/authorized_keys file. There are no provisions for key management and I cannot see an easy way to handle it. It's easy to add new keys, but how do we clean out old keys for retired arch testers? (including arch testers that "retire" without ever informing us) SSH doesn't log key ID as near as I can tell, so we have no way of tracking what keys are used and how often. Also, how do we definitively correlate an SSH key with an arch tester? =20 Now, the same question for email -- how do we manage aliases, especially for inactive, retired and semi-retired arch testers? We could track usage in logs, but between mailing list subscriptions, bugzilla notifications and all sorts of other automated emails, that's not an accurate representation of whether an email alias is actively used or not. I talked to Lance and neither he nor I were consulted about this GLEP and how feasible the implementation is. We both are quite concerned about the issues that I've outlined above as well as others. =20 This isn't a "we're refusing to implement this GLEP" email, btw, though I'm sure some of you will take it as such. It is, however, a "we were never consulted regarding implementation details, so there are still issues that need to be worked out before this GLEP can go anywhere" email. =20 --kurt --YuJye9aIuN0w6xGV Content-Type: application/pgp-signature Content-Disposition: inline -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.1 (GNU/Linux) iD8DBQFDf1uHJPpRNiftIEYRAsWMAJ9XbefAdF0wSfhdYNTPLJkdA2FdUgCgik7N s7EcHGfqUOixQmEzgyuHW0o= =S8/w -----END PGP SIGNATURE----- --YuJye9aIuN0w6xGV-- -- gentoo-dev@gentoo.org mailing list