opening the source repository with anonymous cvs charles
play

OPENING THE SOURCE REPOSITORY WITH ANONYMOUS CVS Charles D. Cranor - PDF document

Apr 05, 2024 •360 likes •535 views

OPENING THE SOURCE REPOSITORY WITH ANONYMOUS CVS Charles D. Cranor AT&T Labs-Research chuck@research.att.com Theo de Raadt The OpenBSD Project deraadt@openbsd.org 10-Jun-99 Chuck Cranor 1 OUTLINE Introduction and motivation

  1. OPENING THE SOURCE REPOSITORY WITH ANONYMOUS CVS Charles D. Cranor AT&T Labs-Research chuck@research.att.com Theo de Raadt The OpenBSD Project deraadt@openbsd.org 10-Jun-99 Chuck Cranor 1

  2. OUTLINE Introduction and motivation Background Anonymous CVS: design and implementation Other open source repository tools Conclusions 10-Jun-99 Chuck Cranor 2

  3. INTRODUCTION Open source: making inroads projects: Linux, BSD, GNU tools, Apache, Mozilla,... key attributes: - source code freely available - open license advantages: promote reliability/quality via: - independent code review - rapid evolution 10-Jun-99 Chuck Cranor 3

  4. INTRODUCTION Only a relatively few users take advantage of having access to source few people download it, fewer read it pre-compiled distributions quite successful open source developers do access it 10-Jun-99 Chuck Cranor 4

  5. WHAT OPEN SOURCE LACKS Standard "Open Source" only partly meets the needs of open source developers missing features - access to old versions of code - annotated per-file modification history - set files to a distribution or date - get current snapshot - merge in local changes features provided by source control system - local: SCCS, RCS - networked: CVS 10-Jun-99 Chuck Cranor 5

  6. THE PROBLEM WITH CVS CVS was not designed to be open (1995) host with cvs repository network client client client Usage requirements: - account on repository host - write access to repository Only select group of privileged developers can access CVS repository Counter to open source philosophy 10-Jun-99 Chuck Cranor 6

  7. OPEN SOURCE REPOSITORY Fall 1995: OpenBSD project started goal: open access to CVS repository - attracts users - makes it easier to download, debug, and manage source tree - easier to learn about the evolution of code result: Anonymous CVS service - Internet users have read-only access to data in repository... - extends "Open Source" concept to "Open Source Repository" 10-Jun-99 Chuck Cranor 7

  8. BACKGROUND Traditional source distribution USENET comp.sources.* Anonymous FTP / web sup rsync CTM All: Open source, but not open source repository 10-Jun-99 Chuck Cranor 8

  9. ANONYMOUS CVS Design goals: security efficiency convenience 10-Jun-99 Chuck Cranor 9

  10. ANONYMOUS CVS DESIGN cvs.openbsd.org anoncvs.openbsd.org sup sup /cvs /cvs master mirror internet anonymous cvs src anoncvs client Put AnonCVS on secondary server machine - replicate repository on AnonCVS server - control anonymous load on main server - no direct anonymous access to master repository 10-Jun-99 Chuck Cranor 10

  11. ANONYMOUS CVS DESIGN anoncvs.openbsd.org chroot sandbox from sup mirror of repository master anoncvs shell cvs binaries rsh/ssh sandboxed /tmp anonymous clients cron gets repository (via sup or rsync) mirror owned by non-priv account "anoncvs" account: no password, captive shell cvs runs in chroot sandbox environment 10-Jun-99 Chuck Cranor 11

  12. ANONYMOUS CVS Implementation issues cvs required writable log file - added CVSREADONLYFS environment variable file locking - CVS locking not an issue with read-only repository - incomplete CVS file: cannot happen 1. create temporary file 2. write complete file data to tmp file 3. rename() tmp file to real file [atomic] - SUP removes a CVS file (should not happen) - old/new mix: possible (even with standard CVS) 10-Jun-99 Chuck Cranor 12

  13. ANONYMOUS CVS Implementation issues (cont.) network flow control problem - CVS design goal: minimize locking time - problem: 1. lock CVS files 2. send update to remote system 3. unlock CVS files what if we block in step 2? (network flow control) n/b n/b update buffering net process process repository problem: no limit on buffering process’ buffer size solution: limit buffer size, ignore locking 10-Jun-99 Chuck Cranor 13

  14. ANONYMOUS CVS Anonymous CVS deployment Fall 1995: first anonymous CVS server (wustl.edu) Currently OpenBSD has 20 AnonCVS servers Usage: 2000 transactions/week (main server) Attracted contributors 10-Jun-99 Chuck Cranor 14

  15. OPEN SOURCE REPOSITORY After Anonymous CVS New Open Source Repository Tools created CVS’ pserver (cvs developers) - adds anonymous support to CVS - uses special CVS server ports - user interface requires login/password - often does not run in chroot() environment - now included with CVS CVSWeb (Bill Fenner, FreeBSD) - browse CVS repository via web client - no local CVS tools required - graphic user interface to CVS 10-Jun-99 Chuck Cranor 15

  16. OPEN SOURCE REPOSITORY After Anonymous CVS (cont.) CVSSup (John Polstra) - current state of the art in Open Source Repository tools - can distribute repository or source tree - uses highly efficient streaming protocol - knows file formats: 1. CVS/RCS files 2. log files 3. unknown (uses rsync algorithm) - can merge into local repository - has graphic user interface - requires Modula3 to compile 10-Jun-99 Chuck Cranor 16

  17. CONTRIBUTIONS we have extended "Open Source" to the next level Open Source => Open Source Repository positive effect of Anonymous CVS (e.g. OpenBSD) Anonymous CVS helped lead to the introduction of new Open Source Repository tools Many large projects have embraced Anonymous CVS - Ecgs, FreeBSD, Mozilla, Apache, etc. 10-Jun-99 Chuck Cranor 17

Download Presentation
Download Policy: The content available on the website is offered to you 'AS IS' for your personal information and use only. It cannot be commercialized, licensed, or distributed on other websites without prior consent from the author. To download a presentation, simply click this link. If you encounter any difficulties during the download process, it's possible that the publisher has removed the file from their server.

Recommend

SVN repository for sources Source code for the Lab is available via SVN:

SVN repository for sources Source code for the Lab is available via SVN:

Faculty of Computer Science Institute for System Architecture, Operating Systems Group Keyboard Driver & Pong Client 2007 SVN repository for sources Source code for the Lab is available via SVN:

203 views • 6 slides
Opening Screen 1 You Can Browse Plans Anonymously 2 Income 3 Anonymous Browsing 4 Applying

Opening Screen 1 You Can Browse Plans Anonymously 2 Income 3 Anonymous Browsing 4 Applying

Opening Screen 1 You Can Browse Plans Anonymously 2 Income 3 Anonymous Browsing 4 Applying for Coverage 5 Employer/Insurance questions EIN Number 6 Forms From Employers 7 Income Flexibility 8 What to tell your community about

401 views • 16 slides
The University of Chicago Library Digital Repository (LDR) Charles Blair 2015-01-27:14-00-00

The University of Chicago Library Digital Repository (LDR) Charles Blair 2015-01-27:14-00-00

The University of Chicago Library Digital Repository (LDR) Charles Blair 2015-01-27:14-00-00 Contents 1 Past 2 1.1 Foundational Documents . . . . . . . . . . . . . . . . . . . . . 2 1.1.1 Preserving Digital Information: Report of the

242 views • 11 slides
Evolution of Cooperation on Anonymous Markets source: https://doi.org/10.7892/boris.69490 |

Evolution of Cooperation on Anonymous Markets source: https://doi.org/10.7892/boris.69490 |

Evolution of Cooperation on Anonymous Markets source: https://doi.org/10.7892/boris.69490 | downloaded: 30.8.2020 Reputation, Reciprocity and the Emergence of Institutions Andreas Diekmann, Ben Jann, Stefan Wehrli and Wojtek Przepiorka ETH Zurich

646 views • 19 slides
An Artefact Repository to Support Distributed Software Engineering October 29, 2004 1

An Artefact Repository to Support Distributed Software Engineering October 29, 2004 1

An Artefact Repository to Support Distributed Software Engineering October 29, 2004 1 Introduction The Open Source Component Artefact Repository (OSCAR) is an internet based system designed and built for use within the GENESIS process aware

688 views • 7 slides
Source Paper An Anonymous Electronic Voting Protocol An Electronic Voting Protocol for

Source Paper An Anonymous Electronic Voting Protocol An Electronic Voting Protocol for

Source Paper An Anonymous Electronic Voting Protocol An Electronic Voting Protocol for Voting Over the Internet, Indrajit Ray, (revisited) Indrakshi Ray, Natarajan Narasimhamurthi Paul Valiant extending work by Dale Neal &

441 views • 5 slides
Anonymous Tokens Michele Orr ia.cr/2020/072 1 Anonymous Tokens Michele Orr joint work

Anonymous Tokens Michele Orr ia.cr/2020/072 1 Anonymous Tokens Michele Orr joint work

Anonymous Tokens Michele Orr ia.cr/2020/072 1 Anonymous Tokens Michele Orr joint work with Ben Kreuter, Tancrde Lepoint, Mariana Raykova ia.cr/2020/072 1 Definition Anonymous tokens are lightweight, single-use anonymous credentials.

657 views • 61 slides
Automating repository workflows with Orpheus An Open Source database of journals and publishers

Automating repository workflows with Orpheus An Open Source database of journals and publishers

Automating repository workflows with Orpheus An Open Source database of journals and publishers Andr e Sartori Office of Scholarly Communication, University of Cambridge, UK Open Repositories 2019 11 June 2019 The problems: Increased

232 views • 12 slides
Tor: Anonymous Communications for the EFF ... and you. Roger Dingledine The Tor Project

Tor: Anonymous Communications for the EFF ... and you. Roger Dingledine The Tor Project

Tor: Anonymous Communications for the EFF ... and you. Roger Dingledine The Tor Project https://torproject.org/ 1 Tor: Big Picture Freely available (Open Source), unencumbered. Comes with a spec and full documentation: German

810 views • 50 slides
Alcoh oholics olics Anonymous nymous A Source ce of Hope for the Person on Suff ffering

Alcoh oholics olics Anonymous nymous A Source ce of Hope for the Person on Suff ffering

Alcoh oholics olics Anonymous nymous A Source ce of Hope for the Person on Suff ffering ering from m Alcoho oholism lism AA Area 28 CPC Committee CPC@area28aa.org Endorsed d by by Area 28 PI Committee A.A. A. Anonymity nymity

434 views • 16 slides
FreeDict: an Open Source repository of TEI-encoded bilingual dictionaries Piotr Ba ski Beata

FreeDict: an Open Source repository of TEI-encoded bilingual dictionaries Piotr Ba ski Beata

FreeDict: an Open Source repository of TEI-encoded bilingual dictionaries Piotr Ba ski Beata Wjtowicz Institute of English Studies, Dept of African Languages and Cultures, University of Warsaw University of Warsaw; Institute of Computer

372 views • 20 slides
Anonymous classes Polymorphism Anonymous classes motivation You probably have many buttons

Anonymous classes Polymorphism Anonymous classes motivation You probably have many buttons

Two cool ideas: Anonymous classes Polymorphism Anonymous classes motivation You probably have many buttons and/or menu items in your VectorGraphics project Three approaches for responding to the events from selecting those buttons /

406 views • 6 slides
Tools for large-scale collection & analysis of source code repositories OPEN SOURCE GIT

Tools for large-scale collection & analysis of source code repositories OPEN SOURCE GIT

Tools for large-scale collection & analysis of source code repositories OPEN SOURCE GIT REPOSITORY COLLECTION PIPELINE Intro Alexander Bezzubov source{d} committer & PMC @ apache zeppelin startup in Madrid engineer

436 views • 25 slides
Tor: Anonymous Communications for the Dept of Defense ... and you. Roger Dingledine The Free

Tor: Anonymous Communications for the Dept of Defense ... and you. Roger Dingledine The Free

Tor: Anonymous Communications for the Dept of Defense ... and you. Roger Dingledine The Free Haven Project http://tor.eff.org/ 1 Tor: Big Picture Freely available (Open Source), unencumbered. Comes with a spec and full documentation:

704 views • 49 slides
Tor: Anonymous Communications for the Dept of Defense ... and you. Roger Dingledine The Free

Tor: Anonymous Communications for the Dept of Defense ... and you. Roger Dingledine The Free

Tor: Anonymous Communications for the Dept of Defense ... and you. Roger Dingledine The Free Haven Project http://tor.eff.org/ 1 Tor: Big Picture Freely available (Open Source), unencumbered. Comes with a spec and full documentation:

806 views • 56 slides
Tor: Anonymous Communications for the US Dept of Defense ... and you. Roger Dingledine The Free

Tor: Anonymous Communications for the US Dept of Defense ... and you. Roger Dingledine The Free

Tor: Anonymous Communications for the US Dept of Defense ... and you. Roger Dingledine The Free Haven Project http://tor.eff.org/ 1 Tor: Big Picture Freely available (Open Source), unencumbered. Comes with a spec and full

1k views • 54 slides
Improving Qualification of Investigators Janette Panhuis, Population Health Research Institute

Improving Qualification of Investigators Janette Panhuis, Population Health Research Institute

February 2019 Improving Qualification of Investigators Janette Panhuis, Population Health Research Institute Christine Hildebrand, Amici Clinical Research Disclaimer The views and opinions expressed in this presentation are those of the

660 views • 34 slides
Vote-Independence: A Powerful Privacy Notion for Voting Protocols Jannik Dreier, Pascal

Vote-Independence: A Powerful Privacy Notion for Voting Protocols Jannik Dreier, Pascal

Introduction Intuitive Definitions Formal Definitions Analysis and Case Studies Conclusion Vote-Independence: A Powerful Privacy Notion for Voting Protocols Jannik Dreier, Pascal Lafourcade, Yassine Lakhnech Universit Grenoble 1, CNRS,

1.12k views • 58 slides
http://cs246.stanford.edu 3/9/20 Jure Leskovec, Stanford CS246: Mining Massive Datasets,

http://cs246.stanford.edu 3/9/20 Jure Leskovec, Stanford CS246: Mining Massive Datasets,

Note to other teachers and users of these slides: We would be delighted if you found our material useful for giving your own lectures. Feel free to use these slides verbatim, or to modify them to fit your own needs. If you make use of a

900 views • 51 slides
Audio Programming with Chuck Session 1: Basics: Sound, Waves, and ChucK Programming Vitor Guerra

Audio Programming with Chuck Session 1: Basics: Sound, Waves, and ChucK Programming Vitor Guerra

Audio Programming with Chuck Session 1: Basics: Sound, Waves, and ChucK Programming Vitor Guerra Rolla Postdoctoral Fellow vitorgr@impa.br Mini-course Schedule Session 1: Basics: Sound, Waves, and ChucK initiation Today Session 2: ChucK

338 views • 17 slides
Introduction to People Optimization Dr. Chuck Coker Scott Howard Human Capital Strategist Executive

Introduction to People Optimization Dr. Chuck Coker Scott Howard Human Capital Strategist Executive

Introduction to People Optimization Dr. Chuck Coker Scott Howard Human Capital Strategist Executive Director, Operations MECLABS MECLABS Dr. Chuck Coker Human Capital Strategist Chuck joined MECLABS Group in January 2007, in order to drive the

767 views • 50 slides
Digital twins to computer vision: A rapid path to augmented reality object detection on the

Digital twins to computer vision: A rapid path to augmented reality object detection on the

IT 2 EC 2020 Digital Twins to Computer Vision Presentation Digital twins to computer vision: A rapid path to augmented reality object detection on the battlefield C. Wythe 1 , N. Fisher 2 , S. Bobrov 3 , B. Russell 4 , J. Alessi 5 , C. Gallagher

57 views • 3 slides
Fastpass A Centralized Zero-Queue Datacenter Network Jonathan Perry Amy Ousterhout Hari

Fastpass A Centralized Zero-Queue Datacenter Network Jonathan Perry Amy Ousterhout Hari

Fastpass A Centralized Zero-Queue Datacenter Network Jonathan Perry Amy Ousterhout Hari Balakrishnan Devavrat Shah Hans Fugal Ideal datacenter network properties No current design satisfies all these properties simultaneously Scaling

352 views • 21 slides
THE CASE FOR

THE CASE FOR

THE CASE FOR

679 views • 48 slides

More recommend