Presentation is loading. Please wait.

Presentation is loading. Please wait.

OPeNDAP Development and Security Policies. Development Policies All of our software uses LGPL or GPL –LGPL is used by most of the code –We want it to.

Published bySimon Rich Modified over 8 years ago

Similar presentations

Presentation on theme: "OPeNDAP Development and Security Policies. Development Policies All of our software uses LGPL or GPL –LGPL is used by most of the code –We want it to."— Presentation transcript:

1 OPeNDAP Development and Security Policies

2 Development Policies All of our software uses LGPL or GPL –LGPL is used by most of the code –We want it to be easy for others to use the software –We don’t care if they make money from it –GPL is more appropriate for end products like user interfaces

3 Participating in Development All are welcome Source code is available for read to anyone Write access is limited to a small number of people –Patches - easier for most people because… –SVN write comes with some strings attached Writers must take care to ‘do no harm’ But we know people are not perfect

4 SVN for source code control - Trac for management Trac is fairly tightly coupled to SVN Trac provides milestones and ‘tickets’ Tickets are used for features, bugs as well as tasks –That is, it is used for both software issues and group management issues Other Trac features: –Wiki for design documents and plans –Roadmap for lists of milestones –SVN browse

5 Developer’s Wiki We run a Wiki for developers - separate from the Trac Wiki –It uses TWiki It serves as a scratchpad for ideas A place to refine ideas before making more formal versions (e.g., we worte the DAP spec there first before preparing a version in LateX for NASA)

6 Two Wiki’s are not enough… We are moving all of our documentation to a MediaWiki –Both Programmer documentation –And User documentation We used to use LaTeX for all of our docs and it was easy to make both PDF and HTML versions from the LaTeX sources The Wiki based docs will be much easier for most people to edit

7 Nightly builds We run nightly builds on several machines There is a web service system we use to collect the results of those builds and the logs they generate The results of the builds are available from Trac - take a look now (scm.opendap.org:8090/trac) The builds are building code from svn using a fresh checkout. We have a svn project which is used to stage a new nightly build

8 Who can get write access? Anyone who asks can get write access to our Wikis (Developers and Docs) Trac access is more restricted, but we are not too worried about giving out access Both Trac and SVN are database systems and both are backed up every night Nightly builds are limited to specific IP addresses

9 Development Security Policies Source code review using an expert system Use US Cert guidelines When is source code ready for release? –All changes must be examined by the expert system –And by a designated ‘Security Officer’ –In addition to the original author

10 Security Release notes In addition to the regular release notes These notes will detail fixes and known issues They will be encrypted and available to security personnel at sites running our code To receive these notes you must provide us with your public key - we will used GPG to encrypt the notes

Download ppt "OPeNDAP Development and Security Policies. Development Policies All of our software uses LGPL or GPL –LGPL is used by most of the code –We want it to."

Similar presentations

WikiWikiWebs and PmWiki Dr. Patrick R. Michaud November 8, 2005.

WikiWikiWebs and PmWiki Dr. Patrick R. Michaud November 8, 2005.
Ch-11 Project Execution and Termination. System Testing This involves two different phases with two different outputs First phase is system test planning.

Ch-11 Project Execution and Termination. System Testing This involves two different phases with two different outputs First phase is system test planning.
CHAPTER 1 SOFTWARE DEVELOPMENT. 2 Goals of software development Aspects of software quality Development life cycle models Basic concepts of algorithm.

CHAPTER 1 SOFTWARE DEVELOPMENT. 2 Goals of software development Aspects of software quality Development life cycle models Basic concepts of algorithm.
By SAG - 11. Objectives Cross platform QA Automation for web applications Scheduling the automation Automatically build the test scripts Generate the.

By SAG Objectives Cross platform QA Automation for web applications Scheduling the automation Automatically build the test scripts Generate the.
Copyright 2004 Monash University IMS5401 Web-based Systems Development Topic 2: Elements of the Web (g) Interactivity.

Copyright 2004 Monash University IMS5401 Web-based Systems Development Topic 2: Elements of the Web (g) Interactivity.
IS 214 Needs Assessment and Evaluation of Information Systems Managing Usability © Copyright 2001 Kevin McBride.

IS 214 Needs Assessment and Evaluation of Information Systems Managing Usability © Copyright 2001 Kevin McBride.
CSI 400/500 Operating Systems Spring 2009 Lecture #20 – Security Measures Wednesday, April 29 th.

CSI 400/500 Operating Systems Spring 2009 Lecture #20 – Security Measures Wednesday, April 29 th.
Fundamentals of Information Systems, Second Edition

Fundamentals of Information Systems, Second Edition
CS 501 : An Introduction to SCM & GForge An Introduction to SCM & GForge Lin Guo

CS 501 : An Introduction to SCM & GForge An Introduction to SCM & GForge Lin Guo
15 Jul 2005CSE403, Summer'05, Lecture 10 Lecture 10: Incremental Releases Valentin Razmov.

15 Jul 2005CSE403, Summer'05, Lecture 10 Lecture 10: Incremental Releases Valentin Razmov.
When will our bugs be fixed? When will our new features be added? When will the next release come out? Is my server up-to-date? Users Committers Program.

When will our bugs be fixed? When will our new features be added? When will the next release come out? Is my server up-to-date? Users Committers Program.
Low level CASE: Source Code Management. Source Code Management  Also known as Configuration Management  Source Code Managers are tools that: –Archive.

Low level CASE: Source Code Management. Source Code Management  Also known as Configuration Management  Source Code Managers are tools that: –Archive.
Source Code Management Or Configuration Management: How I learned to Stop Worrying and Hate My Co-workers Less.

Source Code Management Or Configuration Management: How I learned to Stop Worrying and Hate My Co-workers Less.
1 CSc 191 - Senior Project Software Testing. 2 Preface “The amount of required study of testing techniques is trivial – a few hours over the course of.

1 CSc Senior Project Software Testing. 2 Preface “The amount of required study of testing techniques is trivial – a few hours over the course of.
Michael Solomon Tugboat Software Managing the Software Development Process.

Michael Solomon Tugboat Software Managing the Software Development Process.
Chapter 10 Publishing and Maintaining Your Web Site.

Chapter 10 Publishing and Maintaining Your Web Site.
Version Control with git. Version Control Version control is a system that records changes to a file or set of files over time so that you can recall.

Version Control with git. Version Control Version control is a system that records changes to a file or set of files over time so that you can recall.
Lecturer: Ghadah Aldehim

Lecturer: Ghadah Aldehim
Open Source Workshop1 IBM Software Group Working with Apache Tuscany A Hands-On Workshop Luciano Resende Haleh.

Open Source Workshop1 IBM Software Group Working with Apache Tuscany A Hands-On Workshop Luciano Resende Haleh.
Introduction to Interactive Media 02. The Interactive Media Development Process.

Introduction to Interactive Media 02. The Interactive Media Development Process.

Similar presentations

Ads by Google