Re: RE : Gerrit, Git requirements, cooperation with others. was: git dangerous operations on alioth
Hi Tollef, Tollef Fog Heen writes: > Buildbot is pretty crap at managing slaves that disappear and come back > and such. This works fine for me, I have never had any trouble with that (and yes, my build slaves have disconnected/reconnected quite a few times). Using buildbot since more than a year to do after-push builds of Debian/Ubuntu packages for i3wm.org, see http://i3wm.org/docs/buildbot.html I am pretty happy with buildbot. -- Best regards, Michael -- To UNSUBSCRIBE, email to debian-devel-requ...@lists.debian.org with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org Archive: http://lists.debian.org/x6k3p5bz3j@midna.zekjur.net
Re: RE : Gerrit, Git requirements, cooperation with others. was: git dangerous operations on alioth
]] Thomas Goirand > Did anyone try buildbot? It might be better for what I need. Buildbot is pretty crap at managing slaves that disappear and come back and such. > I quite disliked the fact that most of Jenkins is done through > a web GUI, which was in fact, more a nuisance than anything > else. Maybe buildbot would fit my needs better, so I would > really appreciate if anyone can share his experience with it. Just use jenkins-job-builder? -- Tollef Fog Heen UNIX is user friendly, it's just picky about who its friends are -- To UNSUBSCRIBE, email to debian-devel-requ...@lists.debian.org with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org Archive: http://lists.debian.org/87d2uyunzx@qurzaw.varnish-software.com
Re: RE : Gerrit, Git requirements, cooperation with others. was: git dangerous operations on alioth
On 2013-03-09 23:33:47 +0800 (+0800), Thomas Goirand wrote:
[...]
> I also need to understand how to secure Jenkins. Because
> by default, it's impressive how much Jenkins is a security
> hole where you can execute any command. I was tempted
> to file a bug report against the package because of it. Then
> I saw #697617 and #700761, then gave up... :)
[...]
Yes, it's a chore to keep up with the security vulnerabilities for
Jenkins, particularly if you're following mainline instead of stable
since updates become a grab bag of (sometimes unintended) API
changes as well as new bugs and regressions. We try to be as
proactive as we can, scrape the security index on their wiki and
just plain shutdown Jenkins services on our servers until we can
validate the security fixes and get them applied in production. It's
not for the faint of heart.
At this point we're close enough to having Jenkins interactions
externally integrated with our other systems that its WebUI isn't
much use except for administrative functions. I expect it's not too
far in the future that we'll be able to lock it down such that only
administrators will have access to that interface.
--
{ PGP( 48F9961143495829 ); FINGER( fu...@cthulhu.yuggoth.org );
WWW( http://fungi.yuggoth.org/ ); IRC( fu...@irc.yuggoth.org#ccl );
WHOIS( STANL3-ARIN ); MUD( kin...@katarsis.mudpy.org:6669 ); }
--
To UNSUBSCRIBE, email to debian-devel-requ...@lists.debian.org
with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org
Archive: http://lists.debian.org/20130309155027.gg29...@yuggoth.org
Re: RE : Gerrit, Git requirements, cooperation with others. was: git dangerous operations on alioth
On 03/09/2013 12:36 AM, PICCA Frédéric-Emmanuel wrote: >> I start to really love the CI thing. I first invested a bit of >> time in setting-up everything, > do you have a step by step cookbook for your setup. > Maybe on the debian wiki ? Unfortunately, no. But it's really easier than what I thought. I might try writing such a cookbook if I find the time, and reinstall everything from scratch on a new server. Also, with Jenkins, you just start a script who builds for you. What I wrote is quite a hack, I'm not sure if I want to publish that... :) Or probably with lots of !!!warning!!! added... I also would like to add some goodies to it (like piuparts tests, lintian runs, etc.). I also need to understand how to secure Jenkins. Because by default, it's impressive how much Jenkins is a security hole where you can execute any command. I was tempted to file a bug report against the package because of it. Then I saw #697617 and #700761, then gave up... :) So yeah, Jenkins is nice, but I wouldn't leave it on a public facing internet without any sort of protection (like an htpass over HTTPS). Did anyone try buildbot? It might be better for what I need. I quite disliked the fact that most of Jenkins is done through a web GUI, which was in fact, more a nuisance than anything else. Maybe buildbot would fit my needs better, so I would really appreciate if anyone can share his experience with it. Thomas -- To UNSUBSCRIBE, email to debian-devel-requ...@lists.debian.org with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org Archive: http://lists.debian.org/513b565b.1040...@debian.org
RE : RE : Gerrit, Git requirements, cooperation with others. was: git dangerous operations on alioth
> I love what Michael Prokop did and documented here: > http://jenkins-debian-glue.org/ > Jenkins + Debian packaging using cowbuilder > The code is very clean and easy to hack. Thanks, yes it looks great. Cheers Fred -- To UNSUBSCRIBE, email to debian-devel-requ...@lists.debian.org with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org Archive: http://lists.debian.org/a2a20ec3b8560d408356cac2fc148e5358e63...@sun-dag1.synchrotron-soleil.fr
Re: RE : Gerrit, Git requirements, cooperation with others. was: git dangerous operations on alioth
On 08/03/2013 17:36, PICCA Frédéric-Emmanuel wrote: >> I start to really love the CI thing. I first invested a bit of >> time in setting-up everything, > > do you have a step by step cookbook for your setup. > Maybe on the debian wiki ? I love what Michael Prokop did and documented here: http://jenkins-debian-glue.org/ Jenkins + Debian packaging using cowbuilder The code is very clean and easy to hack. Sylvestre -- To UNSUBSCRIBE, email to debian-devel-requ...@lists.debian.org with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org Archive: http://lists.debian.org/513a186b.5000...@debian.org
