launchpad-dev team mailing list archive
Mailing list archive
Re: Build farm and the slave build id menagerie
On Sat, Mar 13, 2010 at 10:24 AM, Jeroen Vermeulen <jtv@xxxxxxxxxxxxx> wrote:
> I've just been discussing something with wgrant that has been bothering both
> of us.
> We can't be sure, but we think the cross-check may have started out as an
> extra protection against compromised slaves trying to confuse the buildd
> If we ever decide that we need seriously unpredictable ids
> Then again, maybe we don't need a cookie at all and that would be even
> Any comments? Jeers? Cheers? Beers..?
The plan sounds good to me. It seems that you are missing key
information on what the actual threats and security requirements are.
I don't want to block what seems to be a useful simplifying change,
but were I you I'd consult James Troup, LaMont Jones or do some threat