[csw-maintainers] ideas

Ben Walton bwalton at opencsw.org
Sat Jul 9 14:26:51 CEST 2011

Excerpts from Maciej Bliziński's message of Sat Jul 09 06:47:42 -0400 2011:

Hi Maciej,

> Yes, here are some more. I like both ideas: the signing system
> initiating the connection (easier to secure it), and the buildfarm
> deciding when to sign. I have two alternative ideas.
> 1. The signing system listens, but the handling code is super
> simple, only sets a flag. Then the cron job notices it, and signing
> occurs.
> 2. The flag is set on buildfarm side, there is no listener on the
> signing side.

If I'm reading this correctly, the signature would need to be
deposited by the signing side, which means it needs +w on the catalog
storage area and thus more lockdown.  Did I miss your intent?

Ben Walton
Systems Programmer - CHASS
University of Toronto
C:416.407.5610 | W:416.978.4302

More information about the maintainers mailing list