#tfl@irc.freenode.net logs for 13 Dec 2006 (GMT)

Archive Today Yesterday Tomorrow
tfl homepage


[00:56:09] --> Marzo has joined #tfl
[00:56:09] --- ChanServ gives voice to Marzo
[00:56:20] <Marzo> Hi
[00:59:30] <Crysta> hi
[02:11:01] <wizardrydragon> hi
[02:11:23] <Marzo> That was an immediate response, if I ever saw any
[02:11:25] <Marzo> :-p
[02:11:45] <wizardrydragon> Its more immediate then my comments usually are
[02:12:03] <Crysta> mine was immediate o.o
[02:13:09] <Marzo> I wasn't referring to your answer, Crysta ;-)
[02:13:28] <wizardrydragon> Marzo: I was busy.
[02:13:33] <wizardrydragon> Am busy.
[02:13:41] <wizardrydragon> And will be busy for a bit :)
[02:13:45] <Crysta> o.o
[02:13:48] <Crysta> why?
[02:14:22] <wizardrydragon> Im talking with semi-maybe-important people. :P
[02:14:36] <Crysta> why?
[02:14:55] <wizardrydragon> Im speaking with SF staff about my key not working
[02:15:03] <wizardrydragon> And with Jimbo Wales about the SCO wikipedia
[02:15:06] <Crysta> ohhhhhhhh
[02:15:07] <Crysta> k
[02:15:26] <wizardrydragon> :D
[02:16:52] <wizardrydragon> MarzoL Your key works fine, right?
[02:17:02] <Marzo> Yep
[02:17:31] <wizardrydragon> They wondered if perhaps it was a project issue but I am disinclined to believe that since you can update the cvs
[02:17:44] <Marzo> Although to be completelly honest, I don't think I am truly using it
[02:17:50] <Marzo> But it did while I was using it
[02:17:56] <wizardrydragon> The key?
[02:18:04] <Marzo> Yes
[02:18:16] <wizardrydragon> Marzo to update CVS, you need to be connected with the DEV server which requires a key.
[02:18:35] <wizardrydragon> If you're managing it without a key then that's a security hole and we need to know about it now.
[02:19:11] <Marzo> Looking at the CVSROOT I am using, it does not list the key
[02:19:31] <Marzo> Let me check the other optinos in WinCVS before jumping to conclusions
[02:19:33] <wizardrydragon> That's not the same thing Marzo
[02:19:41] <wizardrydragon> We're taking your PGP key
[02:19:58] <Marzo> Before I got my new HD, the key to use was specified in the CVSROOT
[02:20:30] <wizardrydragon> That insecure method of using keys is now depreciated, as is entering the SF password to access the dev server.
[02:20:43] <wizardrydragon> Unlike using passwords you can still use it, but it is insecure.
[02:21:14] <wizardrydragon> (The CVSROOT string is passed plaintext in the CVS connection)
[02:21:32] <wizardrydragon> And this is information im regurgitating from the SF staff just FYI :)
[02:21:37] <Marzo> No, the CVSROOT specified the *path to* the key
[02:21:54] <wizardrydragon> RIght
[02:21:56] <Marzo> It is a special WinCVS CVSROOT
[02:21:59] <wizardrydragon> >> And this is information im regurgitating from the SF staff just FYI :) <<
[02:22:03] <wizardrydragon> :)
[02:22:07] <Marzo> It parsed it and uploaded the key using ssh
[02:22:11] <Marzo> :-)
[02:22:15] <wizardrydragon> Im only making as much sense as they do :)
[02:23:11] <wizardrydragon> (Problem with a lot of tech guys is they leave a lot of things "assumed" as things that are common sense to them, but isnt to someone unfamiliar :) )
[02:25:26] <wizardrydragon> Hmm it seems that the copy of the pgp key they have for me on the server has somehow gotten corrupted, so theyre looking into how that happened
[02:26:01] <Marzo> OK, I seem to definitely not be using the key
[02:26:37] <wizardrydragon> Please check to see if PAGENT or a similar program is loaded into memory
[02:26:46] <Marzo> It was not
[02:27:20] <Marzo> I think I'll delete all the keys I have and create a new one as I don't know which one I was using
[02:27:39] <wizardrydragon> Okay,
[02:28:34] <wizardrydragon> >> Okay please delete all the keys as you say, and then try to attempt to connect to the dev server without a key. You should not be able to write any files in the CVS without a key loaded
[02:28:41] <Marzo> Now that I remember it, I also accessed CVS from Colinux recently -- and I never configured it to send the key
[02:29:15] <wizardrydragon> You can still read files without a key.
[02:30:11] <Marzo> I will add a random space in a TFL file for testing
[02:30:31] <wizardrydragon> (Looks like we may have inadvertendly stumbled onto something big here, heh)
[02:30:59] <Marzo> Just for safety, I will also halt and restart all CVSNT services
[02:31:10] <wizardrydragon> Okay.
[02:31:29] <wizardrydragon> Please do so to ensure a latent key is not being retained by CVSNT
[02:34:52] <Marzo> Here are the results: after shutting down WinCVS, CVSNT, ensuring that Putty/Pageant/whatever were not loaded, deleting all keys from my computer *and* from the SF servers, *still* I was able to commit to TFL
[02:35:21] <wizardrydragon> That definetely should not be happening.
[02:35:23] <wizardrydragon> So,
[02:35:32] <wizardrydragon> Yes, we seem to have stumbled into something here :)
[02:35:45] <Marzo> It seems that the keys are set to optional for the time being...
[02:35:57] <wizardrydragon> They shouldnt be.
[02:36:22] <Marzo> All I needed to do was provide my username and password and voila
[02:36:51] <wizardrydragon> Aha.
[02:37:06] <wizardrydragon> So the depreciated password function is working, when it shouldnt be, being depreciated and all.
[02:37:43] <Marzo> In technical parlance, 'deprecated' == Works, but there are better ways to do it
[02:38:03] <wizardrydragon> Marzo, it was axed for security reasons, so it *should* be disabled.
[02:38:15] <Marzo> Good point
[02:38:50] <Marzo> In any case, let me create a new key and put pageant to work
[02:38:53] <wizardrydragon> And theyre scratching theyre head about it, heh. It seems the server in we're on has some security issues >_<
[02:39:25] <wizardrydragon> I gave them a copy of my public pgp key and they say it should work by tomorrow, so I can (hopefully) commit then.
[02:40:04] <wizardrydragon> I do have the newest code though, unless youve commited changes other than the test since midday
[02:40:14] <wizardrydragon> I had the tech tarball it and send it to me
[02:40:47] <Marzo> I still haven't checked out the code; there is *new* code *not* *written* by *me*???
[02:40:49] * Marzo dies
[02:41:13] <wizardrydragon> lol
[02:41:25] <wizardrydragon> I should be able to commit my changes tomorrow
[02:41:33] <Marzo> Well, it is still not there
[02:41:42] <wizardrydragon> I should be able to commit my changes tomorrow
[02:42:03] * Marzo spontaneously resurrects
[02:42:21] <wizardrydragon> should
[02:42:38] <wizardrydragon> if not the techs got a In Corp spell in his direction
[02:43:02] <Marzo> Don't be stingy -- a Vas Corp spell is much more fun :-p
[02:43:08] <wizardrydragon> :D
[03:13:11] <-- Marzo has left IRC (Read error: 145 (Connection timed out))
[03:13:48] --> Marzo has joined #tfl
[03:13:49] --- ChanServ gives voice to Marzo
[03:14:02] <Marzo> Back
[03:14:05] <Marzo> (had to change router configuration)
[03:14:11] <wizardrydragon> Woo
[03:14:17] <Marzo> lol
[03:14:23] <Crysta> yay
[03:16:37] <Marzo> FYI: I configured putty and pageant, set new CVSROOTS in WinCVS which do not neccessitate my username and password, uploaded a new public key to the servers and everything now seems to work fine
[03:16:47] <Marzo> Will make a test commit just to be sure
[03:17:35] <Marzo> Working perfectly
[03:17:39] <wizardrydragon> Marzo: Sometimes keys take a bit to synch.
[03:17:50] <Marzo> They have already synched
[03:18:33] <Marzo> According to the SF docs, SSH key data is synched on a 10 minute cycle
[03:18:50] <wizardrydragon> Yep.
[03:19:09] <wizardrydragon> How long it takes before you can depends on which end of the cycle you upload the key on :)
[03:19:11] <Marzo> And since the test commits worked...
[03:20:39] <Marzo> It is funny... the first time it took me ages to set up WinCVS working
[03:21:18] <Marzo> Now, I can do it in less than 30 minutes, including the time to find and download the Putty executables, generate a key and wait for it to synch
[03:21:59] <wizardrydragon> heh
[03:41:54] <-- Crysta has left IRC ("Trillian (http://www.ceruleanstudios.com")
[03:51:16] <Marzo> I am off to bed
[03:51:19] <Marzo> Good night
[03:51:26] <wizardrydragon> Fare well
[03:51:32] <-- Marzo has left IRC ("Marzo vanishes suddenly.")
[05:15:20] --> servus has joined #tfl
[05:45:56] <-- servus has left IRC ("Leaving")
[05:56:44] <-- Kirben has left IRC ("System Meltdown")
[06:52:41] --> Kirben has joined #tfl
[06:52:41] --- ChanServ gives voice to Kirben
[08:36:50] <-- wizardrydragon has left IRC (Read error: 110 (Connection timed out))
[13:10:16] <-- Kirben has left IRC (Read error: 110 (Connection timed out))
[17:07:54] --> wizardrydragon has joined #tfl
[17:07:58] --- ChanServ gives voice to wizardrydragon
[17:08:09] <-- wizardrydragon has left IRC (Excess Flood)
[19:39:27] --> Marzo has joined #tfl
[19:39:27] --- ChanServ gives voice to Marzo
[19:39:30] --- Marzo is now known as Marzo_away
[19:39:41] --- Marzo_away is now known as Marzo
[19:42:03] --> wizardrydragon has joined #tfl
[19:42:03] --- ChanServ gives voice to wizardrydragon
[19:47:19] <Marzo> Hi
[19:47:55] <wizardrydragon> hi
[20:28:25] <Marzo> A quick thing which I just stumbled upon:
[20:29:25] <Marzo> Given that the file manager code available for project management available at your domain is somewhat buggy, have you thought about using another?
[20:29:36] <Marzo> For example, I just stumbled upon this: http://phpfm.sourceforge.net/
[20:29:43] <wizardrydragon> It's not a huge issue.
[20:30:02] <wizardrydragon> It's patched in the SVN version but I can't be bothered :-)
[20:30:07] <Marzo> I know, I know; like I said, I stumbled upon this and wanted to ask
[20:30:20] <wizardrydragon> Anyways I will be back in a bit.
[20:30:25] <Marzo> k
[20:30:33] <wizardrydragon> Going by work to tell them I cant work, and then picking up some pizza
[20:30:42] <Marzo> :-)
[21:59:53] <-- Marzo has left IRC ("Marzo vanishes suddenly.")
[22:03:03] <wizardrydragon> Back
[22:38:48] --> Kirben has joined #tfl
[22:38:48] --- ChanServ gives voice to Kirben
[22:57:29] --> Marzo has joined #tfl
[22:57:29] --- ChanServ gives voice to Marzo
[22:58:07] <-- wizardrydragon has left IRC ("wizardrydragon rides off into the sunset.")
[23:00:04] --> wizardrydragon has joined #tfl
[23:00:09] --- ChanServ gives voice to wizardrydragon
[23:40:46] --> Crysta has joined #TFL
[23:40:46] --- ChanServ gives voice to Crysta