opening the source repository with anonymous cvs charles
play

OPENING THE SOURCE REPOSITORY WITH ANONYMOUS CVS Charles D. Cranor - PDF document

Apr 05, 2024 •360 likes •535 views

OPENING THE SOURCE REPOSITORY WITH ANONYMOUS CVS Charles D. Cranor AT&T Labs-Research chuck@research.att.com Theo de Raadt The OpenBSD Project deraadt@openbsd.org 10-Jun-99 Chuck Cranor 1 OUTLINE Introduction and motivation

  1. OPENING THE SOURCE REPOSITORY WITH ANONYMOUS CVS Charles D. Cranor AT&T Labs-Research chuck@research.att.com Theo de Raadt The OpenBSD Project deraadt@openbsd.org 10-Jun-99 Chuck Cranor 1

  2. OUTLINE Introduction and motivation Background Anonymous CVS: design and implementation Other open source repository tools Conclusions 10-Jun-99 Chuck Cranor 2

  3. INTRODUCTION Open source: making inroads projects: Linux, BSD, GNU tools, Apache, Mozilla,... key attributes: - source code freely available - open license advantages: promote reliability/quality via: - independent code review - rapid evolution 10-Jun-99 Chuck Cranor 3

  4. INTRODUCTION Only a relatively few users take advantage of having access to source few people download it, fewer read it pre-compiled distributions quite successful open source developers do access it 10-Jun-99 Chuck Cranor 4

  5. WHAT OPEN SOURCE LACKS Standard "Open Source" only partly meets the needs of open source developers missing features - access to old versions of code - annotated per-file modification history - set files to a distribution or date - get current snapshot - merge in local changes features provided by source control system - local: SCCS, RCS - networked: CVS 10-Jun-99 Chuck Cranor 5

  6. THE PROBLEM WITH CVS CVS was not designed to be open (1995) host with cvs repository network client client client Usage requirements: - account on repository host - write access to repository Only select group of privileged developers can access CVS repository Counter to open source philosophy 10-Jun-99 Chuck Cranor 6

  7. OPEN SOURCE REPOSITORY Fall 1995: OpenBSD project started goal: open access to CVS repository - attracts users - makes it easier to download, debug, and manage source tree - easier to learn about the evolution of code result: Anonymous CVS service - Internet users have read-only access to data in repository... - extends "Open Source" concept to "Open Source Repository" 10-Jun-99 Chuck Cranor 7

  8. BACKGROUND Traditional source distribution USENET comp.sources.* Anonymous FTP / web sup rsync CTM All: Open source, but not open source repository 10-Jun-99 Chuck Cranor 8

  9. ANONYMOUS CVS Design goals: security efficiency convenience 10-Jun-99 Chuck Cranor 9

  10. ANONYMOUS CVS DESIGN cvs.openbsd.org anoncvs.openbsd.org sup sup /cvs /cvs master mirror internet anonymous cvs src anoncvs client Put AnonCVS on secondary server machine - replicate repository on AnonCVS server - control anonymous load on main server - no direct anonymous access to master repository 10-Jun-99 Chuck Cranor 10

  11. ANONYMOUS CVS DESIGN anoncvs.openbsd.org chroot sandbox from sup mirror of repository master anoncvs shell cvs binaries rsh/ssh sandboxed /tmp anonymous clients cron gets repository (via sup or rsync) mirror owned by non-priv account "anoncvs" account: no password, captive shell cvs runs in chroot sandbox environment 10-Jun-99 Chuck Cranor 11

  12. ANONYMOUS CVS Implementation issues cvs required writable log file - added CVSREADONLYFS environment variable file locking - CVS locking not an issue with read-only repository - incomplete CVS file: cannot happen 1. create temporary file 2. write complete file data to tmp file 3. rename() tmp file to real file [atomic] - SUP removes a CVS file (should not happen) - old/new mix: possible (even with standard CVS) 10-Jun-99 Chuck Cranor 12

  13. ANONYMOUS CVS Implementation issues (cont.) network flow control problem - CVS design goal: minimize locking time - problem: 1. lock CVS files 2. send update to remote system 3. unlock CVS files what if we block in step 2? (network flow control) n/b n/b update buffering net process process repository problem: no limit on buffering process’ buffer size solution: limit buffer size, ignore locking 10-Jun-99 Chuck Cranor 13

  14. ANONYMOUS CVS Anonymous CVS deployment Fall 1995: first anonymous CVS server (wustl.edu) Currently OpenBSD has 20 AnonCVS servers Usage: 2000 transactions/week (main server) Attracted contributors 10-Jun-99 Chuck Cranor 14

  15. OPEN SOURCE REPOSITORY After Anonymous CVS New Open Source Repository Tools created CVS’ pserver (cvs developers) - adds anonymous support to CVS - uses special CVS server ports - user interface requires login/password - often does not run in chroot() environment - now included with CVS CVSWeb (Bill Fenner, FreeBSD) - browse CVS repository via web client - no local CVS tools required - graphic user interface to CVS 10-Jun-99 Chuck Cranor 15

  16. OPEN SOURCE REPOSITORY After Anonymous CVS (cont.) CVSSup (John Polstra) - current state of the art in Open Source Repository tools - can distribute repository or source tree - uses highly efficient streaming protocol - knows file formats: 1. CVS/RCS files 2. log files 3. unknown (uses rsync algorithm) - can merge into local repository - has graphic user interface - requires Modula3 to compile 10-Jun-99 Chuck Cranor 16

  17. CONTRIBUTIONS we have extended "Open Source" to the next level Open Source => Open Source Repository positive effect of Anonymous CVS (e.g. OpenBSD) Anonymous CVS helped lead to the introduction of new Open Source Repository tools Many large projects have embraced Anonymous CVS - Ecgs, FreeBSD, Mozilla, Apache, etc. 10-Jun-99 Chuck Cranor 17

Recommend

SVN repository for sources Source code for the Lab is available via SVN:

SVN repository for sources Source code for the Lab is available via SVN:

Faculty of Computer Science Institute for System Architecture, Operating Systems Group Keyboard Driver & Pong Client 2007 SVN repository for sources Source code for the Lab is available via SVN:

203 views • 6 slides
Opening Screen 1 You Can Browse Plans Anonymously 2 Income 3 Anonymous Browsing 4 Applying

Opening Screen 1 You Can Browse Plans Anonymously 2 Income 3 Anonymous Browsing 4 Applying

Opening Screen 1 You Can Browse Plans Anonymously 2 Income 3 Anonymous Browsing 4 Applying for Coverage 5 Employer/Insurance questions EIN Number 6 Forms From Employers 7 Income Flexibility 8 What to tell your community about

401 views • 16 slides
The University of Chicago Library Digital Repository (LDR) Charles Blair 2015-01-27:14-00-00

The University of Chicago Library Digital Repository (LDR) Charles Blair 2015-01-27:14-00-00

The University of Chicago Library Digital Repository (LDR) Charles Blair 2015-01-27:14-00-00 Contents 1 Past 2 1.1 Foundational Documents . . . . . . . . . . . . . . . . . . . . . 2 1.1.1 Preserving Digital Information: Report of the

242 views • 11 slides
Evolution of Cooperation on Anonymous Markets source: https://doi.org/10.7892/boris.69490 |

Evolution of Cooperation on Anonymous Markets source: https://doi.org/10.7892/boris.69490 |

Evolution of Cooperation on Anonymous Markets source: https://doi.org/10.7892/boris.69490 | downloaded: 30.8.2020 Reputation, Reciprocity and the Emergence of Institutions Andreas Diekmann, Ben Jann, Stefan Wehrli and Wojtek Przepiorka ETH Zurich

646 views • 19 slides
An Artefact Repository to Support Distributed Software Engineering October 29, 2004 1

An Artefact Repository to Support Distributed Software Engineering October 29, 2004 1

An Artefact Repository to Support Distributed Software Engineering October 29, 2004 1 Introduction The Open Source Component Artefact Repository (OSCAR) is an internet based system designed and built for use within the GENESIS process aware

688 views • 7 slides
Source Paper An Anonymous Electronic Voting Protocol An Electronic Voting Protocol for

Source Paper An Anonymous Electronic Voting Protocol An Electronic Voting Protocol for

Source Paper An Anonymous Electronic Voting Protocol An Electronic Voting Protocol for Voting Over the Internet, Indrajit Ray, (revisited) Indrakshi Ray, Natarajan Narasimhamurthi Paul Valiant extending work by Dale Neal &

441 views • 5 slides
Anonymous Tokens Michele Orr ia.cr/2020/072 1 Anonymous Tokens Michele Orr joint work

Anonymous Tokens Michele Orr ia.cr/2020/072 1 Anonymous Tokens Michele Orr joint work

Anonymous Tokens Michele Orr ia.cr/2020/072 1 Anonymous Tokens Michele Orr joint work with Ben Kreuter, Tancrde Lepoint, Mariana Raykova ia.cr/2020/072 1 Definition Anonymous tokens are lightweight, single-use anonymous credentials.

657 views • 61 slides
Automating repository workflows with Orpheus An Open Source database of journals and publishers

Automating repository workflows with Orpheus An Open Source database of journals and publishers

Automating repository workflows with Orpheus An Open Source database of journals and publishers Andr e Sartori Office of Scholarly Communication, University of Cambridge, UK Open Repositories 2019 11 June 2019 The problems: Increased

232 views • 12 slides
Tor: Anonymous Communications for the EFF ... and you. Roger Dingledine The Tor Project

Tor: Anonymous Communications for the EFF ... and you. Roger Dingledine The Tor Project

Tor: Anonymous Communications for the EFF ... and you. Roger Dingledine The Tor Project https://torproject.org/ 1 Tor: Big Picture Freely available (Open Source), unencumbered. Comes with a spec and full documentation: German

810 views • 50 slides
Alcoh oholics olics Anonymous nymous A Source ce of Hope for the Person on Suff ffering

Alcoh oholics olics Anonymous nymous A Source ce of Hope for the Person on Suff ffering

Alcoh oholics olics Anonymous nymous A Source ce of Hope for the Person on Suff ffering ering from m Alcoho oholism lism AA Area 28 CPC Committee CPC@area28aa.org Endorsed d by by Area 28 PI Committee A.A. A. Anonymity nymity

434 views • 16 slides
FreeDict: an Open Source repository of TEI-encoded bilingual dictionaries Piotr Ba ski Beata

FreeDict: an Open Source repository of TEI-encoded bilingual dictionaries Piotr Ba ski Beata

FreeDict: an Open Source repository of TEI-encoded bilingual dictionaries Piotr Ba ski Beata Wjtowicz Institute of English Studies, Dept of African Languages and Cultures, University of Warsaw University of Warsaw; Institute of Computer

372 views • 20 slides
Anonymous classes Polymorphism Anonymous classes motivation You probably have many buttons

Anonymous classes Polymorphism Anonymous classes motivation You probably have many buttons

Two cool ideas: Anonymous classes Polymorphism Anonymous classes motivation You probably have many buttons and/or menu items in your VectorGraphics project Three approaches for responding to the events from selecting those buttons /

406 views • 6 slides
Tools for large-scale collection & analysis of source code repositories OPEN SOURCE GIT

Tools for large-scale collection & analysis of source code repositories OPEN SOURCE GIT

Tools for large-scale collection & analysis of source code repositories OPEN SOURCE GIT REPOSITORY COLLECTION PIPELINE Intro Alexander Bezzubov source{d} committer & PMC @ apache zeppelin startup in Madrid engineer

436 views • 25 slides
Tor: Anonymous Communications for the Dept of Defense ... and you. Roger Dingledine The Free

Tor: Anonymous Communications for the Dept of Defense ... and you. Roger Dingledine The Free

Tor: Anonymous Communications for the Dept of Defense ... and you. Roger Dingledine The Free Haven Project http://tor.eff.org/ 1 Tor: Big Picture Freely available (Open Source), unencumbered. Comes with a spec and full documentation:

704 views • 49 slides
Tor: Anonymous Communications for the Dept of Defense ... and you. Roger Dingledine The Free

Tor: Anonymous Communications for the Dept of Defense ... and you. Roger Dingledine The Free

Tor: Anonymous Communications for the Dept of Defense ... and you. Roger Dingledine The Free Haven Project http://tor.eff.org/ 1 Tor: Big Picture Freely available (Open Source), unencumbered. Comes with a spec and full documentation:

806 views • 56 slides
Tor: Anonymous Communications for the US Dept of Defense ... and you. Roger Dingledine The Free

Tor: Anonymous Communications for the US Dept of Defense ... and you. Roger Dingledine The Free

Tor: Anonymous Communications for the US Dept of Defense ... and you. Roger Dingledine The Free Haven Project http://tor.eff.org/ 1 Tor: Big Picture Freely available (Open Source), unencumbered. Comes with a spec and full

1k views • 54 slides
12-STEP PROGRAMS Alcoholics Anonymous The Preamble Alcoholics Anonymous is a fellowship

12-STEP PROGRAMS Alcoholics Anonymous The Preamble Alcoholics Anonymous is a fellowship

12-STEP PROGRAMS Alcoholics Anonymous The Preamble Alcoholics Anonymous is a fellowship of men and women who share their experience, strength and hope with each other that they may solve their common problem and help others to recover

1.11k views • 76 slides
Grid Applica+on Meta-Repository - Repository interconnec+vity

Grid Applica+on Meta-Repository - Repository interconnec+vity

Grid Applica+on Meta-Repository - Repository interconnec+vity and cross-domain applica+on usage in distributed compu+ng environments - Alexandru Tudose

389 views • 14 slides
Storing XML Data In a Native Repository Kamil Toman ktoman@ksi.mff.cuni.cz Dept. of Software

Storing XML Data In a Native Repository Kamil Toman ktoman@ksi.mff.cuni.cz Dept. of Software

Storing XML Data In a Native Repository Kamil Toman ktoman@ksi.mff.cuni.cz Dept. of Software Engineering Faculty of Mathematics and Physics Charles University Introduction Since 1998 XML has become a very popular standard for electronic

287 views • 17 slides
AGM/AGA Lac Heney Ordre du jour / Agenda 1) Opening Remarks / Remarques Prliminaires Charles

AGM/AGA Lac Heney Ordre du jour / Agenda 1) Opening Remarks / Remarques Prliminaires Charles

AGM/AGA Lac Heney Ordre du jour / Agenda 1) Opening Remarks / Remarques Prliminaires Charles Gaudreau 2) Report of Nominating Committee / Rapport du comit des mises en candidature Gerry Webb 3) Treasurer's Report / Rapport du

903 views • 52 slides
For student abcdef : the CS619 repository is: https://stsvn.cs.unh.edu/svn/cs619. abcdef

For student abcdef : the CS619 repository is: https://stsvn.cs.unh.edu/svn/cs619. abcdef

Subversion version control system enables collaborative work maintains di ff erent revisions of every file in a given repository any revision can be retrieved from the repository each revision is associated with a timestamp each revision is

254 views • 6 slides
Status of the Repository at Status of the Repository at Yucca Mountain Presented to: DOE-EM

Status of the Repository at Status of the Repository at Yucca Mountain Presented to: DOE-EM

Status of the Repository at Status of the Repository at Yucca Mountain Presented to: DOE-EM Performance Assessment Community of Practice Technical Exchange Meeting Presented by: Dr. Paul R. Dixon Nuclear Waste Program Manager Nuclear Waste

478 views • 19 slides
Cocaine Anonymous A Presentation to Professionals Presentation Contents Our Aims Today The

Cocaine Anonymous A Presentation to Professionals Presentation Contents Our Aims Today The

Cocaine Anonymous A Presentation to Professionals Presentation Contents Our Aims Today The CA Group Cocaine Anonymous Is The 12 Steps Cocaine Anonymous Is Not Spirituality History of Cocaine Anonymous Sponsorship

700 views • 37 slides
Remote Side-Channel Attacks on Anonymous Transactions In Zcash & Monero Florian Tramr and

Remote Side-Channel Attacks on Anonymous Transactions In Zcash & Monero Florian Tramr and

Remote Side-Channel Attacks on Anonymous Transactions In Zcash & Monero Florian Tramr and Dan Boneh and Kenny Paterson USENIX Security Symposium Meet Alice the Anonymous Activist Blogger PK A anonymous 2 Alices Lack of Privacy Send

395 views • 21 slides

More recommend