Opened 3 months ago

Last modified 2 weeks ago

#33537 assigned task

audit SVN accesses

Reported by: anarcat Owned by: gaba
Priority: Very High Milestone:
Component: Internal Services/Tor Sysadmin Team Version:
Severity: Major Keywords: tpa-roadmap-june
Cc: Actual Points:
Parent ID: #17202 Points:
Reviewer: Sponsor:

Description

one of things that came out of the SVN retirement discussion is that we don't exactly know how to tell who has access to what. we hope that access controls are correct and tight, but that institutional knowledge somewhat bitrotten over the years, so we can't easily tell.

the task is to figure out exactly which set of users has access to which files.

this is in the context that the SVN service will be eventually retired, but we have hit a roadblock in the corpsvn retirement (#32025) where there are concerns about where to move the files to. so while we resolve those concerns, we will keep hosting corpsvn for a little longer and that means cleaning up the accesses.

Child Tickets

Change History (6)

comment:1 Changed 3 months ago by anarcat

Owner: changed from tpa to anarcat
Status: newassigned

i agreed in vegas to take care of this.

comment:2 Changed 3 months ago by anarcat

Owner: changed from anarcat to gaba

i performed the SVN audit and sent the report in private, by email.

a redacted copy of the report is available here:

https://help.torproject.org/tsa/howto/svn/

there's one task to perform on followup, and i've asked gaba to do it.

comment:3 Changed 6 weeks ago by anarcat

@gaba what's our status here?

comment:4 Changed 6 weeks ago by gaba

Keywords: tpa-roadmap-april added; tpa-roadmap-march removed

comment:5 Changed 2 weeks ago by gaba

This is in standby for now. I will go back to it once I get into a new routine and can handle this. I need to do a call with people to check for svn username.

comment:6 Changed 2 weeks ago by gaba

Keywords: tpa-roadmap-june added; tpa-roadmap-april removed
Note: See TracTickets for help on using tickets.