Re: DSAing build daemons (was Re: arm not building for lenny-security)

To: Aurelien Jarno <aurelien@aurel32.net>
Cc: debian-admin@lists.debian.org, ftpmaster@debian.org, team@security.debian.org, debian-wb-team@lists.debian.org
Subject: Re: DSAing build daemons (was Re: arm not building for lenny-security)
From: Peter Palfrader <weasel@debian.org>
Date: Mon, 13 Jun 2011 15:54:38 +0200
Message-id: <[🔎] 20110613135438.GI12880@anguilla.noreply.org>
Mail-followup-to: Aurelien Jarno <aurelien@aurel32.net>, debian-admin@lists.debian.org, ftpmaster@debian.org, team@security.debian.org, debian-wb-team@lists.debian.org
In-reply-to: <[🔎] 20110613122801.GA735@volta.aurel32.net>
References: <201106031154.57858.thijs@debian.org> <20110603111932.GA15871@hall.aurel32.net> <[🔎] e3ea51e4fa1fe71bed2bc674da598e17.squirrel@wm.kinkhorst.nl> <[🔎] 20110603152255.GB15871@hall.aurel32.net> <[🔎] fe7706955a643bef162917bc572c0abd.squirrel@wm.kinkhorst.nl> <[🔎] 20110608200714.GC8450@inutil.org> <[🔎] 20110613122801.GA735@volta.aurel32.net>

On Mon, 13 Jun 2011, Aurelien Jarno wrote:

> > AFAICS also ia64 and hppa need to be converted to have full security
> > buildd autosigning.
> > 
> 
> Basically we've got the request from the security team that all 
> architectures do autosigning for the security suites. The ftpmasters
> require, among other things, that the buildd host doing autosigning
> are maintained by DSA [1].
> 
> Both arm build daemons are not DSAed, and it seems to be the case (at
> least partially) for ia64 and hppa. What would be the required steps to
> make these machines maintained by DSA, and which information would you
> need first?

Which ia64 and hppa buildds that aren't debian.org machines are there,
and why aren't the debian.org machines sufficient for building security?

As for arm, I don't think it's worth taking the machines under DSA
maintenance, given that lenny support will end in about half a year or
so.  Maybe ftpmaster could be convinced to make an exception for arm
buildds?

Cheers,
-- 
                           |  .''`.       ** Debian **
      Peter Palfrader      | : :' :      The  universal
 http://www.palfrader.org/ | `. `'      Operating System
                           |   `-    http://www.debian.org/

Reply to:

Follow-Ups:
- Re: DSAing build daemons (was Re: arm not building for lenny-security)
  - From: Kurt Roeckx <kurt@roeckx.be>

References:
- Re: arm not building for lenny-security
  - From: "Thijs Kinkhorst" <thijs@debian.org>
- Re: arm not building for lenny-security
  - From: Aurelien Jarno <aurelien@aurel32.net>
- Re: arm not building for lenny-security
  - From: "Thijs Kinkhorst" <thijs@debian.org>
- Re: arm not building for lenny-security
  - From: Moritz Muehlenhoff <jmm@inutil.org>
- DSAing build daemons (was Re: arm not building for lenny-security)
  - From: Aurelien Jarno <aurelien@aurel32.net>

Prev by Date: DSAing build daemons (was Re: arm not building for lenny-security)
Next by Date: Re: DSAing build daemons (was Re: arm not building for lenny-security)
Previous by thread: DSAing build daemons (was Re: arm not building for lenny-security)
Next by thread: Re: DSAing build daemons (was Re: arm not building for lenny-security)
Index(es):
- Date
- Thread