[Top][All Lists]
[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
Re: RH 7.2
From: |
James Knowles |
Subject: |
Re: RH 7.2 |
Date: |
Sun, 31 Mar 2002 00:41:36 -0700 |
> > > Is there anyont to get cvs to run a
> > > different (more secure) command?
> > We use ssh exclusively,
> How?
We're not using the CVS pserver. I've used ssh tunneling (port proxy) for
other applications, but not for pserver. I presume that ssh's tunnelling
abilities will allow pserver to be used.
As for passwordless logins with asymmetric keys, you have to create the
public/private key pair. Use the ssh-keygen program (Linux) or puttygen
(Windows). The private half goes in ~/.ssh and the public half is copied
into the remote machine's ~/.ssh/authorized_keys. Leave the password blank.
You may have to ensure that the ~/.ssh directory denies world and group
access (chmod 700). ssh may refuse to work if this directory is group or
world readable.
I stumbled around a lot until I figured it out. Once I figured it out, it's
fairly straightforward.
If you need to do it for a Windows client, I have my personal notes at
http://www.ifm-services.com/people/jamesk/papers/cms/cvs-win32-client.html
under the heading "Setting Up the Cryptographic Keys."
--
Concordia parvae res crescunt, discordia maximae dilabuntur.
Through unity the small thing grows, through disunity the largest thing
crumbles.
- Sallust, Jugurtha
- RH 7.2, Bryon Lape, 2002/03/28