From mboxrd@z Thu Jan 1 00:00:00 1970 Return-Path: Received: from lists.gentoo.org (pigeon.gentoo.org [208.92.234.80]) by finch.gentoo.org (Postfix) with ESMTP id 43453138A1A for ; Tue, 17 Feb 2015 09:02:00 +0000 (UTC) Received: from pigeon.gentoo.org (localhost [127.0.0.1]) by pigeon.gentoo.org (Postfix) with SMTP id 728B5E0955; Tue, 17 Feb 2015 09:01:58 +0000 (UTC) Received: from smtp.gentoo.org (smtp.gentoo.org [140.211.166.183]) (using TLSv1.2 with cipher AECDH-AES256-SHA (256/256 bits)) (No client certificate requested) by pigeon.gentoo.org (Postfix) with ESMTPS id D0187E0941 for ; Tue, 17 Feb 2015 09:01:57 +0000 (UTC) Received: from grubbs.orbis-terrarum.net (localhost [127.0.0.1]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-SHA (256/256 bits)) (No client certificate requested) by smtp.gentoo.org (Postfix) with ESMTPS id DC947340809 for ; Tue, 17 Feb 2015 09:01:56 +0000 (UTC) Received: (qmail 27597 invoked by uid 10000); 17 Feb 2015 09:01:41 -0000 Date: Tue, 17 Feb 2015 09:01:41 +0000 From: "Robin H. Johnson" To: gentoo-project@lists.gentoo.org Subject: Re: [gentoo-project] Gentoo, GitHub, and the Social Contract Message-ID: References: <201502142148.30540.dilfridge@gentoo.org> <20150215070454.12e20dda@pomiot.lan> Precedence: bulk List-Post: List-Help: List-Unsubscribe: List-Subscribe: List-Id: Gentoo Project discussion list X-BeenThere: gentoo-project@lists.gentoo.org Reply-To: gentoo-project@lists.gentoo.org MIME-Version: 1.0 Content-Type: text/plain; charset=utf-8 Content-Disposition: inline Content-Transfer-Encoding: 8bit In-Reply-To: <20150215070454.12e20dda@pomiot.lan> User-Agent: Mutt/1.5.21 (2010-09-15) X-Archives-Salt: 9b7504e0-ebb0-41fe-99bb-86b7b952861c X-Archives-Hash: 720af60e3a683fa3af6654343f64ac85 On Sun, Feb 15, 2015 at 07:04:54AM +0100, Michał Górny wrote: > Dnia 2015-02-14, o godz. 21:48:22 > "Andreas K. Huettel" napisał(a): > > > whenever the suggestion comes up to enable contributions to Gentoo via Github > > pull requests, we also encounter discussion of the Gentoo Social Contract. > > > > The two points that are seen as conflicting are > > > > * The software running Github is closed source, proprietary. > > > > * The Gentoo Social Contract states [1]: > > "Gentoo will never depend upon a piece of software or metadata unless it > > conforms to the GNU General Public License, the GNU Lesser General Public > > License, the Creative Commons - Attribution/Share Alike or some other license > > approved by the Open Source Initiative (OSI)." > Maybe you should start by providing an alternative conforming to this. > For a start, Infra should stop running proprietary software. However, > so far they have been openly refusing to publish their scripts. > In fact, I've been recently asked to put my open source overlay QA > scripts [1] in a restricted-access repository. The only reason most Infra scripts AREN'T directly public, is that they are in the long-standing cfengine/puppet repos, and those repos contain scatterings of passwords. Next week, the cfengine history will be a full decade old (Earliest commit is 2005/02/22). Using Wikimedia (who run Wikipedia) as an example, go and read this: http://blog.wikimedia.org/2011/09/19/ever-wondered-how-the-wikimedia-servers-are-configured/ It took WikiMedia a few weeks of fulltime work multiple by several people, to get the stuff into a state with split public/private repos. Infra would love to have our stuff more open, but as it stands, there is a LOT of historical password junk in the scripts. If you look at recent package additions, you'll see I added dev-ruby/hiera-eyaml-gpg, to extract more of the passwords out of the core Puppet tree. For passwords beyond puppet, look at https://github.com/robbat2/pwstore, not presently packaged because I'm waiting for a response from upstream to see about how it diverged. If I could afford to spend the more than just volunteer time on Infra, yes, I'd love to have few full 40 hour weeks to put into cleaning up our cfengine and puppet to where it's significantly easier to manage. I've been doing that for my dayjob already: https://github.com/BCLibCoop/?query=puppet And I'm borrowing where possible in both directions: both for work from Gentoo infra, and for Gentoo from my work stuff. At the present rate it's going, it's mostly: - new services are built in puppet - old services are deprecated and removed from cfengine Nothing that infra runs explicitly depends on GitHub. -- Robin Hugh Johnson Gentoo Linux: Developer, Infrastructure Lead E-Mail : robbat2@gentoo.org GnuPG FP : 11ACBA4F 4778E3F6 E4EDF38E B27B944E 34884E85