As we're adding users, we decided that it is a pain to give everyone a
shell account on daystrom, so we're switching to the "shared ssh"
mechanism of access control for committing to the repository.
We're doing this for several reasons:
1) ease of management
2) much more secure
3) easier user experience (with an ssh key and the ssh agent, you only
type your passphrase once (how nice!))
Instead of having one unix user account per committer, all we need is
an ssh key for each committer and we all share a single unix user
account. repository paths that used to look like this:
ssh://m5sim.org//repo/<repo>
now look like this:
ssh://h...@m5sim.org/<repo>
if you're using http to pull, nothing changes. Everyone will need to
edit their .hg/hgrc files for every repository that points to daystrom
as a parent.
I've gathered all of the ssh keys that I could find on daystrom and
installed them. Here are the people I've found keys for. If you're
listed as admin, you can administer the list of committers, if you're
listed as a committer, you can push, if you're listed as inactive,
it's because I haven't seen a commit from you in a long time and I'd
like to disable your access until such time that you'd actually use
it. (Test things out and make sure things work)
ali_saidi, nate_binkert, steve_reinhardt, gabe_black (admin, committer)
rick_strong, lisa_hsu, korey_sewell, kevin_lim (committer)
clint_smullen, steve_hines, trevor_mudge (inactive)
I don't have a key for these people:
Arkaprava Basu, Brad Beckmann, Geoff Blake, Christos Kozyrakis, Daniel
Sanchez, David Wood, Derek Hower, Dan Gibson, Mark Hill, Miles Childs
Kaufmann, Polina Dudnik, Ronald George Dreslinski Jr, Somayeh
Sardashti, Cong Wang
For those of you that don't plan on committing any time soon, we'll
just disable your account until you plan to start committing (it's
more secure that way anyway). I'm going to disable non-admin user
accounts in a few days. If you want to maintain uninterrupted commit
access, please send me your ssh *PUBLIC* key before then. For those
of you that don't know what an ssh key is, please use google (you
should also check out the ssh agent). This website seems to do a
decent job of explaining things:
http://sial.org/howto/openssh/publickey-auth/
Any questions? (Please don't make me respond with RTFM.)
Nate
_______________________________________________
m5-dev mailing list
m5-dev@m5sim.org
http://m5sim.org/mailman/listinfo/m5-dev
