[Author Prev][Author Next][Thread Prev][Thread Next][Author Index][Thread Index]

Re: [tor-bugs] #8437 [EFF-HTTPS Everywhere]: Prevent invalid rules from being committed, or at leat warn when they are

To: undisclosed-recipients:;
Subject: Re: [tor-bugs] #8437 [EFF-HTTPS Everywhere]: Prevent invalid rules from being committed, or at leat warn when they are
From: "Tor Bug Tracker & Wiki" <blackhole@xxxxxxxxxxxxxx>
Date: Fri, 08 Mar 2013 23:52:12 -0000
Auto-submitted: auto-generated
Delivered-to: archiver@xxxxxxxx
Delivery-date: Fri, 08 Mar 2013 18:52:26 -0500
In-reply-to: <046.4939ccacdf2ba019c7ea366e5e31e340@xxxxxxxxxxxxxx>
List-archive: <http://lists.torproject.org/pipermail/tor-bugs>
List-help: <mailto:tor-bugs-request@lists.torproject.org?subject=help>
List-id: "auto: Tor bug tracker status mails" <tor-bugs.lists.torproject.org>
List-post: <mailto:tor-bugs@lists.torproject.org>
List-subscribe: <https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-bugs>, <mailto:tor-bugs-request@lists.torproject.org?subject=subscribe>
List-unsubscribe: <https://lists.torproject.org/cgi-bin/mailman/options/tor-bugs>, <mailto:tor-bugs-request@lists.torproject.org?subject=unsubscribe>
References: <046.4939ccacdf2ba019c7ea366e5e31e340@xxxxxxxxxxxxxx>
Reply-to: tor-assistants@xxxxxxxxxxxxxx
Sender: tor-bugs-bounces@xxxxxxxxxxxxxxxxxxxx

#8437: Prevent invalid rules from being committed, or at leat warn when they are
----------------------------------+-----------------------------------------
 Reporter:  schoen                |          Owner:  pde
     Type:  task                  |         Status:  new
 Priority:  normal                |      Milestone:     
Component:  EFF-HTTPS Everywhere  |        Version:     
 Keywords:                        |         Parent:     
   Points:                        |   Actualpoints:     
----------------------------------+-----------------------------------------
Changes (by pde):

 * cc: Sebastian (added)


Comment:

 Sebastian please correct me if I'm wrong about this, but it seems as
 though the server side post-receive hook is the first time that the server
 can inspect the rulesets, and that's too late to stop the commit from
 going through.

 Even aside from that, the most conceptually elegant way to audit rulesets
 via git might be in the client-side pre-commit hook.  But I don't know if
 there's any practical way to get a hook script into hundreds of ruleset
 authors' local repos [*].

 Maybe there's a hook that you, Mike, Dan and I could use on the client
 side that would prevent us from pushing broken stuff.  But that's
 inherently less productive than telling the people who wrote the buggy
 rulesets that they were buggy.

 [*] the Internet suggests the hack of cp'ing a git hook script into
 .git/hooks from somewhere like the build script.  But I think that the
 ruleset authors who are failing to validate their rulesets probably aren't
 running the build script either.

-- 
Ticket URL: <https://trac.torproject.org/projects/tor/ticket/8437#comment:1>
Tor Bug Tracker & Wiki <https://trac.torproject.org/>
The Tor Project: anonymity online
_______________________________________________
tor-bugs mailing list
tor-bugs@xxxxxxxxxxxxxxxxxxxx
https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-bugs

References:
- [tor-bugs] #8437 [EFF-HTTPS Everywhere]: Prevent invalid rules from being committed, or at leat warn when they are
  - From: Tor Bug Tracker & Wiki

Prev by Author: Re: [tor-bugs] #8436 [EFF-HTTPS Everywhere]: Ruleset enabled/disabled icons fail to display
Next by Author: Re: [tor-bugs] #8436 [EFF-HTTPS Everywhere]: Ruleset enabled/disabled icons fail to display
Previous by thread: [tor-bugs] #8437 [EFF-HTTPS Everywhere]: Prevent invalid rules from being committed, or at leat warn when they are
Next by thread: Re: [tor-bugs] #4190 [Trac]: No versions options for HTTPS Everywhere when creating a new ticket
Index(es):
- Author
- Thread