1 |
On Wed, Sep 16, 2020 at 4:17 AM Kent Fredric <kentnl@g.o> wrote: |
2 |
> |
3 |
> On Mon, 14 Sep 2020 10:15:31 -0400 |
4 |
> Rich Freeman <rich0@g.o> wrote: |
5 |
> |
6 |
> > It might be easier to take smaller steps, such as having a policy that |
7 |
> > "any call for devs to use/test a new tool/service, or any service that |
8 |
> > automatically performs transactions on bugzilla, must be FOSS, and the |
9 |
> > link to the source must be included in the initial communication, and |
10 |
> > it must be clear what version of the code is operating at any time." |
11 |
> > That is a pretty low barrier to those creating tools, though it |
12 |
> > doesn't address the infra concern. However, it does mean that infra |
13 |
> > is now free to fork the service at any time, and reduces the bus |
14 |
> > factor greatly. |
15 |
> |
16 |
> For the situation of things that take life before being part of infra, |
17 |
> I think the least we can do is recognize their utility and importance, |
18 |
> and at least, have infra *offer* some sort of shared location to run a |
19 |
> deployment. |
20 |
> |
21 |
> That I think helps everyone, gives people a place to remove their own |
22 |
> bus factor, but without mandatory strongarming. |
23 |
|
24 |
This might be one option. Another might be to try to have a more |
25 |
"open infra" approach where core services like authentication are |
26 |
provided by Gentoo, but available to 3rd parties. This could allow |
27 |
more services to be externally hosted, ideally with redundancy (not |
28 |
just at the host level, but at the maintainer/software level as well). |
29 |
The obvious downside to this would be chaos - we might have 3 list |
30 |
servers, 5 bug trackers, 10 git repos, and so on. However, if |
31 |
anything did go down we'd have half a dozen potential replacements so |
32 |
all anybody needs to do is migrate their own stuff to their chosen |
33 |
copy. |
34 |
|
35 |
The value add of Gentoo would be in central services like |
36 |
identity/reputation and curation. There might be 14 git repos out |
37 |
there but Gentoo would control which ones end up on the master rsync |
38 |
server and which rsync mirrors get advertised as being genuine, and |
39 |
which list servers are official. |
40 |
|
41 |
I realize this is a bit more tangential. I just think that infra is |
42 |
already a huge failure point, so having more stuff on infra actually |
43 |
makes that failure point more critical. A Gentoo where little is |
44 |
hosted on stuff we own is much more resilient in the face of |
45 |
legal/money/etc issues. If Gentoo just becomes some blessed config |
46 |
files, a website, and SAML then anybody could host the core from their |
47 |
basement. |
48 |
|
49 |
Maybe it is a good thing that core services aren't always hosted by infra? |
50 |
|
51 |
-- |
52 |
Rich |