From dev-return-48842-archive-asf-public=cust-asf.ponee.io@couchdb.apache.org Wed Oct 9 19:17:26 2019 Return-Path: X-Original-To: archive-asf-public@cust-asf.ponee.io Delivered-To: archive-asf-public@cust-asf.ponee.io Received: from mail.apache.org (hermes.apache.org [207.244.88.153]) by mx-eu-01.ponee.io (Postfix) with SMTP id B247C180645 for ; Wed, 9 Oct 2019 21:17:25 +0200 (CEST) Received: (qmail 5769 invoked by uid 500); 9 Oct 2019 19:17:24 -0000 Mailing-List: contact dev-help@couchdb.apache.org; run by ezmlm Precedence: bulk List-Help: List-Unsubscribe: List-Post: List-Id: Reply-To: dev@couchdb.apache.org Delivered-To: mailing list dev@couchdb.apache.org Received: (qmail 5758 invoked by uid 99); 9 Oct 2019 19:17:24 -0000 Received: from Unknown (HELO mailrelay1-lw-us.apache.org) (10.10.3.42) by apache.org (qpsmtpd/0.29) with ESMTP; Wed, 09 Oct 2019 19:17:24 +0000 Received: from auth1-smtp.messagingengine.com (auth1-smtp.messagingengine.com [66.111.4.227]) by mailrelay1-lw-us.apache.org (ASF Mail Server at mailrelay1-lw-us.apache.org) with ESMTPSA id 9E68C5A6D for ; Wed, 9 Oct 2019 19:17:24 +0000 (UTC) Received: from compute4.internal (compute4.nyi.internal [10.202.2.44]) by mailauth.nyi.internal (Postfix) with ESMTP id 43A5A2179E for ; Wed, 9 Oct 2019 15:17:24 -0400 (EDT) Received: from mailfrontend2 ([10.202.2.163]) by compute4.internal (MEProxy); Wed, 09 Oct 2019 15:17:24 -0400 X-ME-Sender: X-ME-Proxy-Cause: gggruggvucftvghtrhhoucdtuddrgedufedriedugdduudefucetufdoteggodetrfdotf fvucfrrhhofhhilhgvmecuhfgrshhtofgrihhlpdfqfgfvpdfurfetoffkrfgpnffqhgen uceurghilhhouhhtmecufedttdenucenucfjughrpefhtggguffffhfvjgfkofesrgdtmh erhhdtjeenucfhrhhomheptegurghmucfmohgtohhlohhskhhiuceokhhotgholhhoshhk segrphgrtghhvgdrohhrgheqnecuffhomhgrihhnpegrphgrtghhvgdrohhrghdpghhith hhuhgsrdgtohhmnecukfhppeejfedrudegledrvddvfedrudehgeenucfrrghrrghmpehm rghilhhfrhhomhepkhhotgholhhoshhkodhmvghsmhhtphgruhhthhhpvghrshhonhgrlh hithihqdelkedvieegheeitddqudehheeijeejheegqdhkohgtohhlohhskheppegrphgr tghhvgdrohhrghesfhgrshhtmhgrihhlrdgtohhmnecuvehluhhsthgvrhfuihiivgeptd X-ME-Proxy: Received: from [192.168.1.160] (c-73-149-223-154.hsd1.ma.comcast.net [73.149.223.154]) by mail.messagingengine.com (Postfix) with ESMTPA id DED83D6005E for ; Wed, 9 Oct 2019 15:17:23 -0400 (EDT) From: Adam Kocoloski Content-Type: multipart/alternative; boundary="Apple-Mail=_C1633304-B585-4497-AB5C-58ACAAE4FFFB" Mime-Version: 1.0 (Mac OS X Mail 13.0 \(3594.4.19\)) Subject: Re: CouchDB 3.0 Weekly Update Date: Wed, 9 Oct 2019 15:17:23 -0400 References: <5127D7FD-0FF3-40F3-83E5-8C4C70A14C5B@apache.org> To: dev@couchdb.apache.org In-Reply-To: <5127D7FD-0FF3-40F3-83E5-8C4C70A14C5B@apache.org> Message-Id: X-Mailer: Apple Mail (2.3594.4.19) --Apple-Mail=_C1633304-B585-4497-AB5C-58ACAAE4FFFB Content-Transfer-Encoding: quoted-printable Content-Type: text/plain; charset=utf-8 OK on the security tightening I found this email from Joan: = https://lists.apache.org/thread.html/9c3dacde83d698c262afec5eca524783c71db= eceee26aa66a77538ee@%3Cdev.couchdb.apache.org%3E = Reproduced here. I=E2=80=99ll add this context to the ticket, but seems = like there=E2=80=99s a decent amount of design work left to do here. Adam > I remembered one last deprecation we wanted in 3.0: security = tightening,=20 > which included the deprecation of admin party. >=20 > Jan can you find the ticket on this? I don't think it's the full = #1504.=20 > Just new defaults, and we'll need to think thru what happens when=20 > starting up a node that has no [admins]. Do we create one and log its=20= > password to the logfile? What if logging is disabled / goes nowhere? = Or=20 > do we simply refuse to start until an admin is created? What about=20 > crypting and salting the password ahead of time - do we introduce a=20 > small cli tool to generate passwords like apache/httpd does? Many = questions. >=20 > -Joan > On Oct 9, 2019, at 2:32 PM, Adam Kocoloski = wrote: >=20 > I tidied up the =E2=80=9C3.0 Release Tasks=E2=80=9D column and closed = out a few issue that didn=E2=80=99t get auto-closed through PRs. We=E2=80=99= re down to 8 cards in that column at the moment. >=20 > One issue is the rebar3 / mix migration: = https://github.com/apache/couchdb/issues/1428. I=E2=80=99m not convinced = that needs to land for 3.0. I expect most people use our binary packages = and/or container-based installation methods rather than building from = source themselves. It also feels like there=E2=80=99s a fair amount of = open-ended experimentation that might take place in order to build = consensus on the direction there. I=E2=80=99d like to move that back = into the backlog; does anyone disagree? >=20 > We also have an issue that says we want to =E2=80=9Ctighten up the = security model=E2=80=9D: https://github.com/apache/couchdb/issues/2191. = I don=E2=80=99t know quite what the intended scope is for that. Does = anyone have specifics there? >=20 > Adam >=20 >> On Oct 2, 2019, at 10:25 AM, Denitsa Burroughs = wrote: >>=20 >> Hi all, >>=20 >> Here's a weekly update on CouchDB 3.0. Still looking for volunteers = to work >> on the available issues and/or doc items. Please take a look and let = me >> know if you can work in any of thise. >>=20 >> *In progress (Owners, please provide an update):* >>=20 >> #1524 Per-document = access >> control- Jan >> #1875 Update = SpiderMonkey >> Version - Peng Hui >> #2165 - Remove >> delayed_commits setting - Nick (docs left) >>=20 >> *Available: * >> #2177 Update Fauxton >> dependency >> #2169 Remove support = for >> ?stale query parameter in favor of `stable` and `update_after` combo >> #2167 Remove vestiges = of >> view-based `_changes` feed >> #2166 - Remove >> `/{db}/_external/*` >> #2115 Update default = config >> settings (Q, max_document_size, etc.) >> #1428 Migrate to = rebar3 or >> mix >> #1470 Fix calculation = of >> external size for attachments - Eric? >> #1523 Retire the >> node-local interface (port 5986) >>=20 >> - WIP PR: https://github.com/apache/couchdb/pull/2092 >>=20 >>=20 >> *Discussion items (on ML):* >> 2191 Tightening up = the >> security model >> IOQ discussion - Cluster setup does not create IOQ stats database >>=20 >> *Documentation improvements:* >> - Proposed deprecations for 3.0, not rebuilt/removed in 4.0 >> - couch_btree developer docs - Chintan >>=20 >> Thanks! >>=20 >> Deni >=20 --Apple-Mail=_C1633304-B585-4497-AB5C-58ACAAE4FFFB--