Dear Infra, 1) please add my account dilfridge to the exp_amd64 group (on woodpecker?) 2) please add on woodpecker a service account, -- name, e.g., binhost-demeter or similar -- scp / sftp / rsync only -- which is also part of the group exp_amd64 -- can upload to /space/experimental-local/amd64 -- and where the following key has access: ssh-ed25519 AAAAC3NzaC1lZDI1NTE5AAAAIIz9GdxPCccwEuBOoMGqzHsbFyHG5Qf19L0j1hFMtwq3 root@demeter.amd64.dev.gentoo.org Thanks!
1) done (via puppet, so will take a minute).
(In reply to Michał Górny from comment #1) > 1) done (via puppet, so will take a minute). Dunno what exactly happened, but I don't see any difference. dilfridge@woodpecker ~ $ id uid=2276(dilfridge) gid=100(users) groups=100(users)
(In reply to Andreas K. Hüttel from comment #2) > (In reply to Michał Górny from comment #1) > > 1) done (via puppet, so will take a minute). > > Dunno what exactly happened, but I don't see any difference. > > dilfridge@woodpecker ~ $ id > uid=2276(dilfridge) gid=100(users) groups=100(users) I don't think puppet controls th ose on woodpecker (hilarious I know.) I did it manually for now. -A
ping
> 2) please add on woodpecker a service account, > -- name, e.g., binhost-demeter or similar > -- scp / sftp / rsync only > -- which is also part of the group exp_amd64 > -- can upload to /space/experimental-local/amd64 > -- and where the following key has access: > > ssh-ed25519 > AAAAC3NzaC1lZDI1NTE5AAAAIIz9GdxPCccwEuBOoMGqzHsbFyHG5Qf19L0j1hFMtwq3 > root@demeter.amd64.dev.gentoo.org If we can find another way to upload to the experimental tree (or somewhere else on the mirrors) from demeter then I'm open to options... I just want to keep the binhost/releng builders like demeter free of incoming connections (the only open port is SSH). I trust myself less to keep it secure than I trust Infra to keep woodpecker and other infra servers secure.
