Peter S. Mazinger has done a great job integrating the hardened-gcc into his embedded uclib setups so far (outside of gentoo as now) and bears potential in maintaining the respective ebuilds like uclib and corresponding tools together with the -hardened and the -embedded team. He is currently working on and is interested in firewalls, embedded systems, grsecurity, hardening with propolice and etdyn randomization. I would love to see him joining the gentoo-hardened and the gentoo-embedded teams as ebuild maintainer and future toolchain co- developer because he also impersonates an evenly balanced indepth knowledge about both gcc and glibc! Thanks in advance, Alexander Gabert Reproducible: Couldn't Reproduce Steps to Reproduce: 1. emerge sync 2. vi gentoo-questionnaire 3. emerge Peter S. Mazinger Actual Results: Peter did not became a gentoo developer :-( Expected Results: Peter should have made it to a gentoo developer! solar can also be interviewed about Peter S. Mazinger, he knows him too and also votes for him ;-)
From ps.m@gmx.net Fri Dec 12 14:31:41 2003 Return-path: <ps.m@gmx.net> Envelope-to: pappy@dev.gentoo.org Delivery-date: Fri, 12 Dec 2003 14:31:42 +0000 Received: from mail.gentoo.org ([204.126.2.42] helo=gentoo.org) by smtp.gentoo.org with esmtp (Exim 4.24) id 1AUoKT-0006um-KY for pappy@dev.gentoo.org; Fri, 12 Dec 2003 14:31:41 +0000 Received: (qmail 23306 invoked by alias); 12 Dec 2003 08:31:40 -0600 Delivered-To: pappy@gentoo.org Received: (qmail 27598 invoked from network); 12 Dec 2003 08:31:39 -0600 Received: from smtp.freestart.hu (HELO relay.freestart.hu) (213.197.64.6) by mail.gentoo.org with SMTP; 12 Dec 2003 08:31:39 -0600 Received: from mail by freestart.hu with local (Freestart relay 1 (FS-Lin)) id 1AUoKP-00018z-00 for <pappy@gentoo.org>; Fri, 12 Dec 2003 15:31:37 +0100 Received: from line-84-66.dial.freestart.hu ([213.197.84.66] helo=mail.bridge.net)by freestart.hu with esmtp (Freestart relay 1 (FS-Lin))id 1AUoKH-00015h-00; Fri, 12 Dec 2003 15:31:30 +0100 Received: from localhost (localhost [127.0.0.1])by localhost (Postfix) with ESMTPid 662A6F8F1; Fri, 12 Dec 2003 12:31:26 +0100 (CET) Received: from mail.bridge.net ([127.0.0.1])by localhost (lnx.bridge.net [127.0.0.1]) (amavisd-new, port 10024) with LMTPid 20812-04; Fri, 12 Dec 2003 12:31:16 +0100 (CET) Received: by mail.bridge.net (Postfix, from userid 200)id 32364F8E8; Fri, 12 Dec 2003 12:31:15 +0100 (CET) Received: from localhost (localhost [127.0.0.1])by mail.bridge.net (Postfix) with ESMTPid DFD0A4597; Fri, 12 Dec 2003 12:31:15 +0100 (CET) Date: Fri, 12 Dec 2003 12:31:15 +0100 (CET) From: "Peter S. Mazinger" <ps.m@gmx.net> To: Ned Ludd <solar@gentoo.org> Cc: Alexander Gabert <pappy@gentoo.org> Subject: Re: Peter S. Mazinger wanted for psm@gentoo.org In-Reply-To: <1071211916.19993.143.camel@simple> Message-ID: <Pine.LNX.4.44.0312121228170.32356-100000@lnx.bridge.net> MIME-Version: 1.0 X-Virus-Scanned: by amavisd-new at localhost X-freestart-banner: Yes Content-Type: text/plain; charset=us-ascii X-Evolution-Source: imap://pappy@emu.gentoo.org/ Content-Transfer-Encoding: 8bit On 12 Dec 2003, Ned Ludd wrote: > Sorry guys I'm sick. > > Peter, > > I've read your email and many of your concerns don't really matter. > Pappy cant code either but I can't even begin to tell you how incredibly > helpfully he has been to our team. > > A few people on the -embedded team and a few people on the hardened team > have all mentioned that they wished you were a developer. > > You have a sheer knowledge of events that are current among many > distro's that I/we just find very impressive. > > As for not having access to many arches is not a big deal we have alot > of developer resources. Take for example when PAX was ported to amd64, > ia64 the PaX team did not have the resources to do this but it was a > long standing desire to have grsec/pax for all arches, so we setup an > account for pipacs to do this. The same could be done for you as needed. > > As for cvs.. No big deal we have 180 or so people that can help you when > ever needed. > > Anyway I feel like dog poo so I got to cut this short, but I > hope you consider pappy's offer. > > > On Thu, 2003-12-11 at 18:38, Peter S. Mazinger wrote: > > On Wed, 10 Dec 2003, Alexander Gabert wrote: > > > > > Dear Peter, > > > > > > regarding your achievements integrating etdyn and propolice support in > > > uclib and your superior understanding of toolchain and library internals > > > in the GNU/Linux userland, i would really love to see you join the > > > Gentoo team as a full featured developer. > > > > Ok, but read further, and if your offer remains after reading all the > > infos about me, then the answer will be YES. My answer was already given above for the case, that my concerns do not influence the offer: YES. Thanks taking the time answering, Peter > > > > First, some info about me that could change your mind/offer: > > > > Negative (probably from your point of view): > > 1. I do not know C/C++ or any other programming language, any > > changes/patches done by me are only due to: > > a. seen it somewhere (I somehow followed devel of RedHat, Mandrake, a > > little bit Debian (some utilities/patches), SuSE, also tested doing LFS > > myself (glibc/uclibc versions), Owl, Immunix > > As example: My kernel that I mostly use is Redhat minimal patches (no > > ac/nptl), Debian with ipsec, ck (Con Kolivas) O1/preempt/lowlatency, > > grsecurity (or pax with obscure patch), freeswan, mppe, netfilter > > patch-o-matic (see my kernel (mk242x) spec file, but I can build from the > > same spec file an aa version of the same config (without RedHat/debian) > > but with ipsec and the rest > > b. I do not really understand what the (inter)diffs between patch changes > > do, but I try to understand it (but do not know what a pointer really is, > > a friend of mine sad, "if you understand pointers, then you know C" ;-) > > c. if I needed some patch, then I looked for others that solved my problem > > already > > > > 2. I know a little shell programming, but not really efficient, I have > > the feeling, that I use too many redundant solutions (awk/sed are not > > really my friends, I can use them only minimally) > > > > 3. No gentoo knowledge. I haven't ever booted gentoo, and I won't boot it > > until I do not have a connection that allows me to do emerge world. I have > > a stage1 tarball that I have looked at (structure, config-files, > > startup-scripts) and I do "emerge sync" maybe ones a day from my "new" > > uclibc based config to see what changes are in, mainly, hardened/embedded > > stuff, and binutils/gcc/glibc, and have stolen some patches and applied > > them to my rpms. I am reading since about a month gentoo lists > > (user/dev/hardened/embedded). The lack of proper packaging in gentoo with > > conflict/trigger handling makes it a hard choise for my purposes. I do > > really hope that portage-ng will do better. > > > > 4. No cvs knowledge (I use it only to make updates to follow the > > development of: uclibc, busybox, buildroot(uclibc), ppp, and make some > > version-to-head downloads of grsecurity to see the changes), no commit, > > no real development in cvs. > > > > > > Positive experience (I think): > > 1. rpm since RedHat 3.x, building own versions since RedHat 5.x and > > supporting them up to RedHat 7.3 (no 8.x, 9.x, these were too buggy to > > move to for firewalls). This is also my current platform on "production" > > firewalls (production means here: my own production). Following what > > openpkg is doing too. > > > > 2. fwtk (proxies) > > > > 3. LIDS (with openwall/hap-linux or PaX, used in production, but not > > anymore, it was 2.2 kernel time) > > > > 4. changed LIDS to grsecurity 1.x (2.x is only in test phase, 1.x is in > > production) > > > > My future [non-]interests: > > 1. I do not want to learn any programming language (it's hard w/o C ;-( ) > > 2. Firewalls > > 3. Firewalls ;-( > > 4. Firewalls ;-) > > > > Firewalls = I try to provide some kind of security to my customers, and > > this is based on Linux. > > > > What I am doing now: > > Install and support RedHat 7.3 with my addons: > > antivirus,postfix,proxies,iptables scripts -by me, content filtering in > > e-mails on customer request (attachement removal), control activities of > > customer's users (on customer request), administer some of these > > "firewalls" > > > > What's my future intention: > > Move to a minimalistic distro (uclibc based now that all features I wanted > > are in: propolice/etdyn), maybe bootable from CD, where I know what happens > > and so I can minimize my administration/support time (it should be somehow > > under my control) > > > > > Your mission, if you are willing to take it, would be the integration > > > and the maintenance of the currently half-supported uclibc ebuilds and > > > the surrounding tools and installation prerequisites, read: stages and > > > build environment (livecd too maybe?). > > > > see earlier, I need gentoo experience, an ebuild is not a real problem, if > > I find out all the possible usable parameters and commands. No experience > > with livecd. > > > > > > > > You would get all support you need from the Gentoo development team and > > > would also not be forced into online irc sessions or prolonged > > > troubleshooting tasks by us. > > The support is really needed due to my lack of C knowledge. Also for the > > beginning some guidelines would be welcome (how to write ebuilds, > > policies, requirements, should not use infos, contacts for specific > > problems) > > > > > > > > You could continue to work via email and submitting patches, and when > > > you get assigned developer status, committing directly to Gentoo cvs. > > see earlier, I have to learn using cvs to commit. > > > > > > > > I would also like to see you doing integration of the hardened-gcc and > > > the etdyn/propolice userland in the uclibc ebuilds where appropriate and > > > possible advanced hardened profiles for embedded userlands like cdrom > > > bootable firewall appliances and similar integrated devices like > > > wireless routers and such further areas of interest. > > This would be somehow what I want to do. One big problem though: I posses > > only i286-i686 (fastest is 1,4 GHz. my compiler), so I cannot test any > > other platform. It would be good to have one other arch to test what I am > > doing. or would someone else do the tests for me? > > > > And finally two questions: > > 1. What does a full featured developer for Gentoo mean? > > 2. I had the feeling, that solar wanted to do this job, are you (solar) > > not interested anymore? > > > > Thanks for the offer, Peter > -- Peter S. Mazinger <ps.m@gmx.net> ID: 0xA5F059F2 NIC: IXUYHSKQLI Key fingerprint = 92A4 31E1 56BC 3D5A 2D08 BB6E C389 975E A5F0 59F2 ____________________________________________________________________ Miert fizetsz az internetert? Korlatlan, ingyenes internet hozzaferes a FreeStarttol. Probald ki most! http://www.freestart.hu
Peter, Thanks for accepting. Your support and experince have helped me in my current struggle with uclibc. Your goals are compatible with the embedded and hardened projects. I have read your concerns and don't feel you are the only one to have such concerns about you own ability. It is very rare and not necessary to have strenghts in all aspects of software developments. The skills and motivation that you do have is of value to gentoo. You are after an easy solution with embedded/hardened solutions just like everyone on these projects. Welcome aboard and I look forward to working with you.
no comment
Hey I dont think this bug should be closed/later pappy. From my understanding Peter is in the process of getting to know our internals a little better and will let us know when he feels ready. As we often know bugs marked as LATER are pretty much the same as WONTFIX (or forget about me)
assigned to hardened herd
Ok, reclosing bug. Peter S. Mazinger has declined due to portage limitations for embedded environments and our lack of propper shared object handling.
*** Bug 68839 has been marked as a duplicate of this bug. ***
Reopening since I'm assuming this is the same person. Donnie asked if the last issue in this bug was resolved. Is it solar?
reassigning to recruiters since it looks like this is a recruiters issue again.
Re: comment #9 in ref to comment #6 After much work by Peter/Myself and now SpanKY portage itself handles much better now for embedded envs. Doing as any good dev would do Peter kept working on the backend getting ebuilds/Makefiles/patch ready to support what we needed it to support. Now that the framework is in place and Peter has bandwidth now he is ready to make that final sacrifice and become a spam target. Peter please email your most recent copy of your quizes to recuriters@gentoo.org along with a 1024 (D|R)SA gpg id of (psm|mps)@gentoo.org Generate a new ssh key for your user@gentoo.org and attach the id_(d|r)sa.pub this is what you should use to sign your emails. I think that sums everything up.
His quiz needs to be current with the current ebuild quiz, Plus he must take the end of mentoring quiz.
Umm yeah his quizes are current with the hardend questionaire and the additional ebuild quizes (you have some overlap with our quiz) and he has additional done the bash quiz. So only thing left should be the end of mentoring quiz which is a new one to me. So please point us in the right direction for that one.
Hafve him send us the quizzes he's got first.
Please redue the top part of the ebuild quiz. provide more detail in your answers, and try reading documentation to get them rather then just taking guesses. Please redue the following questions in the ebuild section, They are either incomplete, or not correct: 1, 5, 6, 7, 9 (how long should packages be in ~arch?), 12 (what do you do if the developer doesn't respond?), 17
This is silly. dmwaters not attaching quizes to bugs is bad. I can't review and help who I'm helping to mentor when I can't see see the questions in context if I keep having to refer to mail. Please from now on all dev quizes should be need to be attached to bugs. Marked private if need be. Somebody attach the most recent copy of quiz sent to recruiters here.
I also did not want to use this bug # I opened other for a reason. (This one is out of date in many respects. pappy is not his mentor this time around for example)
Quizzes are not to be attached to bugs. you as the mentor should get the initial quiz, it's up to you to deal with if he doesn't send his quizzes to you. Quizzes aren't attached to bugs because there is often personal info in quizzes, and recruiters bugs are public for a reason, not private. We use the same bug that was initially created for a person because it tracks the progress of that person. You may be a new mentor, but we need to keep the same bug for one person, not have several bugs for them.
I've got several gig of mail. can't find the right quiz. Please restructure quizes into public & private parts.. Email is not a reliable form of communication for these things.
what is the showstopper in this bug report? i would like to make progress with getting him into the -embedded and -hardened team. TIA, Alex
This bug will be revitalised when there is common consensus reached by the following actions: - devrel (Developer Relations): last information status to my knowledge: no action needed, waiting for dev quiz - Peter S. Mazinger (prospective developer): The prospective developer Peter S. Mazinger will fill out the dev quiz in his own due time and until then there will be no progress to the recruitment process - Alexander Gabert or Ned Ludd (possible mentors): I suggest that Nedd and i start negotatiating and mutually agreeing upon who is mentoring this developer after i finished my 30 days leave of abscence and when Peter Mazinger finally has decided that he is now ready for entering the Gentoo Embedded and/or Hardened team, this includes he has properly filled out the current version of the required "dev-quiz" to the best of his knowledge and is convinced and prepared for working as a member of the respective teams representing the Gentoo Linux project. Thanks to all staff involved on the recruitment process for your favorable cooperation and positive commitment on the progress of this recruitment process so far, Alex
I'm fed up here.
K, I'll be taking care of this bug personally. Peter, please resend your ebuild and end quizzes to recruiters@gentoo.org (and CC jhuebel@gentoo.org) and I'll get you setup ASAP.
Created attachment 46420 [details] ebuild quiz
Created attachment 46421 [details] hardened quiz
ebuild quiz reviewed and comments emailed to Peter
ebuild quiz approved, moving on to end quiz
Jason, what's the status of this one?
Hey Jason got a bit sidetracked, so could you please send me the ebuild and end quizzes. I'll review them and get you setup, thanks.
feedback sent on end quiz
psm emailed me to say he's no longer interested. Closing.