Re: [Monotone-devel] Google Summer of Code 2006

[Richard Levitte - VMS Whacker]

In message <address@hidden> on Fri, 21 Apr 2006 09:54:17 -0500, Chad Walstrom 
<address@hidden> said:

chewie> There is the possibility of adding setuid/setgid calls to usher, but
chewie> that means usher would need to be run as root or have some sort of
chewie> capabilities package enabled in the kernel to assign these rights to
chewie> an unprivileged user.  A little scary, if you ask me, since usher is
chewie> processing public requests.
chewie> 
chewie> There's the Postfix way of launching new services, a master server.
chewie> usher could make requests of the master server to launch a new 'mtn
chewie> serve' instance as a given user.  i.e. The 'gnats' user to launch 'mtn
chewie> serve' on the GNATS project's gnats.mtn database.

I'm sorry, why can't usher *be* the master server?  Adding a master
server in between would just add a layer of complexity that gives
nothing extra in return.

Cheers,
Richard

-----
Please consider sponsoring my work on free software.
See http://www.free.lp.se/sponsoring.html for details.

-- 
Richard Levitte                         address@hidden
                                        http://richard.levitte.org/

"When I became a man I put away childish things, including
 the fear of childishness and the desire to be very grown up."
                                                -- C.S. Lewis