<!-- MHonArc v2.4.4 -->
<!--X-Subject: [MUD&#45;Dev] Re: Ruminations on CVS and developing in the Bazaar -->
<!--X-From-R13: <terrneNploreuvtujnl.arg> -->
<!--X-Date: Mon, 30 Nov 1998 20:32:58 &#45;0800 -->
<!--X-Message-Id: Pine.LNX.4.04.9811302058450.2692&#45;100000#burrito,cyberhighway.net -->
<!--X-Content-Type: text/plain -->
<!--X-Reference: 199812010345.TAA31161#under,engr.sgi.com -->
<!--X-Head-End-->
<!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 3.2//EN">
<html>
<head>
<title>MUD-Dev message, [MUD-Dev] Re: Ruminations on CVS and developing in the Bazaar</title>
<!-- meta name="robots" content="noindex,nofollow" -->
<link rev="made" href="mailto:greear#cyberhighway,net">
</head>
<body background="/backgrounds/paperback.gif" bgcolor="#ffffff"
      text="#000000" link="#0000FF" alink="#FF0000" vlink="#006000">

  <font size="+4" color="#804040">
    <strong><em>MUD-Dev<br>mailing list archive</em></strong>
  </font>
      
<br>
[&nbsp;<a href="../">Other Periods</a>
&nbsp;|&nbsp;<a href="../../">Other mailing lists</a>
&nbsp;|&nbsp;<a href="/search.php3">Search</a>
&nbsp;]
<br clear=all><hr>
<!--X-Body-Begin-->
<!--X-User-Header-->
<!--X-User-Header-End-->
<!--X-TopPNI-->

Date:&nbsp;
[&nbsp;<a href="msg00874.html">Previous</a>
&nbsp;|&nbsp;<a href="msg00876.html">Next</a>
&nbsp;]
&nbsp;&nbsp;&nbsp;&nbsp;
Thread:&nbsp;
[&nbsp;<a href="msg00873.html">Previous</a>
&nbsp;|&nbsp;<a href="msg00881.html">Next</a>
&nbsp;]
&nbsp;&nbsp;&nbsp;&nbsp;
Index:&nbsp;
[&nbsp;<A HREF="author.html#00875">Author</A>
&nbsp;|&nbsp;<A HREF="#00875">Date</A>
&nbsp;|&nbsp;<A HREF="thread.html#00875">Thread</A>
&nbsp;]

<!--X-TopPNI-End-->
<!--X-MsgBody-->
<!--X-Subject-Header-Begin-->
<H1>[MUD-Dev] Re: Ruminations on CVS and developing in the Bazaar</H1>
<HR>
<!--X-Subject-Header-End-->
<!--X-Head-of-Message-->
<UL>
<LI><em>To</em>: <A HREF="mailto:mud-dev#kanga,nu">mud-dev#kanga,nu</A></LI>
<LI><em>Subject</em>: [MUD-Dev] Re: Ruminations on CVS and developing in the Bazaar </LI>
<LI><em>From</em>: &lt;<A HREF="mailto:greear#cyberhighway,net">greear#cyberhighway,net</A>&gt;</LI>
<LI><em>Date</em>: Mon, 30 Nov 1998 21:09:01 -0700 (MST)</LI>
<LI><em>Reply-To</em>: <A HREF="mailto:mud-dev#kanga,nu">mud-dev#kanga,nu</A></LI>
</UL>
<!--X-Head-of-Message-End-->
<!--X-Head-Body-Sep-Begin-->
<HR>
<!--X-Head-Body-Sep-End-->
<!--X-Body-of-Message-->
<PRE>

On Mon, 30 Nov 1998, J C Lawrence wrote:

&gt; There are two levels to such trust:
&gt; 
&gt;   1) Trust them when accessing your machine (or whoever might gain
&gt; access to your machine via the account you give them).
&gt; 
&gt;   2) Trust their code changes.
&gt; 
&gt; #1 is a bitch, and one I am becoming intimately familiar with under
&gt; CVS.  The problem is that any given CVS user with write access to
&gt; the repository effectively has the ability to execute arbitrary
&gt; programs on your machine without your control.  This is not
&gt; something I'm happy with for Kanga.Nu (I'm paranoid).  After a lot
&gt; of beating about the bush and messing with SSH, and SSH pipes in
&gt; attempt to secure (more) the authentication end of CVS (its pretty
&gt; lightweight out of the box) with the idea of using SSH to help limit
&gt; the number of people who know or can get the authentication data,
&gt; I've finally given up.  SSH1 just can't make port forwarded pipes to
&gt; accounts which aren't login/shell accounts (ideally I'd use an
&gt; account with /bin/false for a shell, a * password, and whose home
&gt; directory is root.root with 0400 permissions) and I'm uncomfortable
&gt; with the security of SSH2 as well as its licensing restrictions.

You don't have to give anyone an account on your machine.  (I think you
know this, just pointing it out..)  You just map their account to the
cvs-user account.

My CVSROOT/passwd file looks something like:

ben:PaSsWd:cvs_user
...

In the above example, there is no need to create the user 'ben', and there
is no reason that the end user should know cvs_user's password.
Using this, other than the cvs commands, I'm not sure if you really can
get into the box.  Of course, haven't tried too hard or read extensively
on it...

&gt; #2 is a touchie feelie thing.  I'd recommend a policy of code
&gt; reviews, initilly by with yourself as the review, and later with
&gt; trusted lieutenants as an additional pool of reviewers.  Then use
&gt; nightly builds (if it doesn't build the check-in is bogus) as a
&gt; one-way check (I think there was a tool on Freshmeat to track build
&gt; errors and their guilty parties), and standard regression tests on
&gt; every build as the other-way check.

Yep, gonna have to get cozy with the CVS commands...

&gt; &gt; What if it's as simple as indentation changes or comment style.
&gt; 
&gt; Run Berkely indent as a filter under CVS to post-process all sources
&gt; into acceptable formats.  IIRC this is documented in Cederqvist.

Gonna have to look this up...  I remember installing it with my latest RH
5.2, so I know it's on here somewhere :)

Ben

Ben Greear (greear#cyberhighway,net)  <A  HREF="http://www.primenet.com/~greear">http://www.primenet.com/~greear</A> 
Author of ScryMUD:  mud.primenet.com 4444
<A  HREF="http://www.primenet.com/~greear/ScryMUD/scry.html">http://www.primenet.com/~greear/ScryMUD/scry.html</A>




</PRE>

<!--X-Body-of-Message-End-->
<!--X-MsgBody-End-->
<!--X-Follow-Ups-->
<HR>
<ul compact><li><strong>Follow-Ups</strong>:
<ul>
<li><strong><A NAME="00881" HREF="msg00881.html">[MUD-Dev] Re: Ruminations on CVS and developing in the Bazaar</A></strong>
<ul compact><li><em>From:</em> J C Lawrence &lt;claw#under,engr.sgi.com&gt;</li></ul>
</UL></LI></UL>
<!--X-Follow-Ups-End-->
<!--X-References-->
<UL><LI><STRONG>References</STRONG>:
<UL>
<LI><STRONG><A NAME="00873" HREF="msg00873.html">[MUD-Dev] Re: Ruminations on CVS and developing in the Bazaar</A></STRONG>
<UL><LI><EM>From:</EM> J C Lawrence &lt;claw#under,engr.sgi.com&gt;</LI></UL></LI>
</UL></LI></UL>
<!--X-References-End-->
<!--X-BotPNI-->
<UL>
<LI>Prev by Date:
<STRONG><A HREF="msg00874.html">[MUD-Dev] Re: DIS: Client-Server vs Peer-to-Peer</A></STRONG>
</LI>
<LI>Next by Date:
<STRONG><A HREF="msg00876.html">[MUD-Dev] Atention SSH/Java-developers (MindTerm update)</A></STRONG>
</LI>
<LI>Prev by thread:
<STRONG><A HREF="msg00873.html">[MUD-Dev] Re: Ruminations on CVS and developing in the Bazaar</A></STRONG>
</LI>
<LI>Next by thread:
<STRONG><A HREF="msg00881.html">[MUD-Dev] Re: Ruminations on CVS and developing in the Bazaar</A></STRONG>
</LI>
<LI>Index(es):
<UL>
<LI><A HREF="index.html#00875"><STRONG>Date</STRONG></A></LI>
<LI><A HREF="thread.html#00875"><STRONG>Thread</STRONG></A></LI>
</UL>
</LI>
</UL>

<!--X-BotPNI-End-->
<!--X-User-Footer-->
<!--X-User-Footer-End-->
<ul><li>Thread context:
<BLOCKQUOTE><UL>
<LI><STRONG>[MUD-Dev] Re: Ruminations on CVS and developing in the Bazaar</STRONG>, <EM>(continued)</EM>
<ul compact>
<LI><strong><A NAME="00868" HREF="msg00868.html">[MUD-Dev] Re: Ruminations on CVS and developing in the Bazaar</A></strong>, 
greear <a href="mailto:greear#cyberhighway,net">greear#cyberhighway,net</a>, Sun 29 Nov 1998, 23:11 GMT
</LI>
</ul>
</LI>
<LI><strong><A NAME="00862" HREF="msg00862.html">[MUD-Dev] Ruminations on CVS and developing in the Bazaar</A></strong>, 
Ben Greear <a href="mailto:greear#cyberhighway,net">greear#cyberhighway,net</a>, Sat 28 Nov 1998, 06:33 GMT
<UL>
<LI><strong><A NAME="00863" HREF="msg00863.html">[MUD-Dev] Ruminations on CVS and developing in the Bazaar</A></strong>, 
Petri Virkkula <a href="mailto:pvirkkul#iki,fi">pvirkkul#iki,fi</a>, Sat 28 Nov 1998, 08:36 GMT
</LI>
<LI><strong><A NAME="00873" HREF="msg00873.html">[MUD-Dev] Re: Ruminations on CVS and developing in the Bazaar</A></strong>, 
J C Lawrence <a href="mailto:claw#under,engr.sgi.com">claw#under,engr.sgi.com</a>, Tue 01 Dec 1998, 03:46 GMT
<UL>
<LI><strong><A NAME="00875" HREF="msg00875.html">[MUD-Dev] Re: Ruminations on CVS and developing in the Bazaar</A></strong>, 
greear <a href="mailto:greear#cyberhighway,net">greear#cyberhighway,net</a>, Tue 01 Dec 1998, 04:32 GMT
<UL>
<LI><strong><A NAME="00881" HREF="msg00881.html">[MUD-Dev] Re: Ruminations on CVS and developing in the Bazaar</A></strong>, 
J C Lawrence <a href="mailto:claw#under,engr.sgi.com">claw#under,engr.sgi.com</a>, Wed 02 Dec 1998, 00:32 GMT
</LI>
</UL>
</LI>
</UL>
</LI>
</UL>
</LI>
<LI><strong><A NAME="00861" HREF="msg00861.html">[MUD-Dev] [RELEASE] Insanity To Infinity (I:I_OS) v.02a</A></strong>, 
Bobby Bailey <a href="mailto:mush#smidefix,karen.hik.se">mush#smidefix,karen.hik.se</a>, Fri 27 Nov 1998, 03:12 GMT
<LI><strong><A NAME="00856" HREF="msg00856.html">[MUD-Dev] [RELEASE] Insanity To Infinity (I:I_OS) v.01a</A></strong>, 
Bobby Bailey <a href="mailto:mush#smidefix,karen.hik.se">mush#smidefix,karen.hik.se</a>, Wed 25 Nov 1998, 03:21 GMT
<UL>
<LI><strong><A NAME="00857" HREF="msg00857.html">[MUD-Dev] Re: [RELEASE] Insanity To Infinity (I:I_OS) v.01a</A></strong>, 
Robin Carey <a href="mailto:r.carey#dcs,napier.ac.uk">r.carey#dcs,napier.ac.uk</a>, Wed 25 Nov 1998, 09:07 GMT
</LI>
</UL>
</LI>
</UL></BLOCKQUOTE>

</ul>
<hr>
<center>
[&nbsp;<a href="../">Other Periods</a>
&nbsp;|&nbsp;<a href="../../">Other mailing lists</a>
&nbsp;|&nbsp;<a href="/search.php3">Search</a>
&nbsp;]
</center>
<hr>
</body>
</html>