On Wed, Dec 3, 2008 at 10:48 AM, Peter Kasting <[EMAIL PROTECTED]> wrote:
> On Wed, Dec 3, 2008 at 10:45 AM, Nicolas Sylvain <[EMAIL PROTECTED]>wrote: > >> Opening the try servers externally is tricky. If the patch is sent by a >> malicious users, it means that they can run arbitrary code in our test >> environment, which is not good. >> > > Yes, I think that's the issue we'd have to deal with. (This is also an > issue Mozilla has to deal with, as they have publicly-accessible try > servers.) > The mozilla try server page says that : "The try server is an easy way to test a patch on all 3 platforms without committing to a repository. You need an LDAP and CVS account to access it." https://wiki.mozilla.org/Build:TryServer https://build.mozilla.org/sendchange.cgi Nicolas > > If we can make it so that the worst thing that happens is that the machine > goes down, I think we're doing well enough. > > We would need to limit the scope to only the people who already have write >> access to the repository. >> > > I think a solution with this limit is not very useful. > > PK > > > > --~--~---------~--~----~------------~-------~--~----~ You received this message because you are subscribed to the Google Groups "Chromium-dev" group. To post to this group, send email to [email protected] To unsubscribe from this group, send email to [EMAIL PROTECTED] For more options, visit this group at http://groups.google.com/group/chromium-dev?hl=en -~----------~----~----~----~------~----~------~--~---
