Re: autobuilding, pgp signing, security

To: joost witteveen <joost@rulcmc.leidenuniv.nl>
Cc: dwarf@polaris.net, aj@dungeon.inka.de, debian-devel@lists.debian.org
Subject: Re: autobuilding, pgp signing, security
From: Christoph Lameter <clameter@waterf.org>
Date: Mon, 29 Sep 1997 12:08:56 -0700 (PDT)
Message-id: <[🔎] Pine.LNX.3.96.970929120703.21713A-100000@waterf.org>
In-reply-to: <[🔎] m0xFjhA-000CL6C@rulcmc.leidenuniv.nl>

On Mon, 29 Sep 1997, joost witteveen wrote:

>> The machine will not have a pgp key. The special packaging account will
>> have one. Packages will be build under one special user account which can
>> be protected with a directory mode 700 on top so that no one can spy into
>> things.
>
>But then it isn't "auto-building" any more! 
>Anyway, the above solution would be my "preferred" solution, but
>really I think just a "true" autobuild procedure is OK too.

Certainly it is autobuilding. Just have the user account run some cron
jobs. That is the nice feature of your fakeroot package. Building is
possible with any user account without superuser priviledges. No root
access, no machine authentication necessary. Protect the homedir of the
autobuild user appropriately and the thing should be quite secure.

--- +++ --- +++ --- +++ --- +++ --- +++ --- +++ --- +++ ---

--
TO UNSUBSCRIBE FROM THIS MAILING LIST: e-mail the word "unsubscribe" to
debian-devel-request@lists.debian.org . 
Trouble?  e-mail to templin@bucknell.edu .

Reply to:

References:
- Re: autobuilding, pgp signing, security
  - From: joost@rulcmc.leidenuniv.nl (joost witteveen)

Prev by Date: Re: fakeroot a solution for multi-architecture building?
Next by Date: Re: Serious security hole in Samba
Previous by thread: Re: autobuilding, pgp signing, security
Next by thread: Re: autobuilding, pgp signing, security
Index(es):
- Date
- Thread