Re: access control mechanisms

info-cvs

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: access control mechanisms

From:	Larry Jones
Subject:	Re: access control mechanisms
Date:	Tue, 28 Jan 2003 10:36:58 -0500 (EST)

Matt J. Gumbley writes:
> 
> (We're using cvs 1.11.2 client and server, pserver, SystemAuth=no, we 
> have a UNIX cvs group containing all users, and all users are listed in 
> CVSROOT/passwd)

Do users run as themselves, or are you mapping all of the CVS users to
one (or a few) system users?

> Is there any way in which we can set up our repository with 
> access-control-list -like behaviour?

You can probably do what you want with Unix groups.  Put all the
developers in one group and all the authors in the other.  Have the
source file directories and files set to the developer group and the
documentation directories and files set to the author group.  (If your
system is anything other than one of the BSDs, you'll probably have to
set the set-group-id bit on the directories so that newly created files
and subdirectories get their group from the parent directory rather than
the creating user's default group.)  Set the protections on the
directories so that group members have write permission but other users
only have read permission.  As admin, put yourself in both groups.

-Larry Jones

The game's called on account of sudden death. -- Calvin

[Prev in Thread]

Current Thread

[Next in Thread]

access control mechanisms, Matt J. Gumbley, 2003/01/28
- Re: access control mechanisms, Ralf S. Engelschall, 2003/01/28
- Re: access control mechanisms, Larry Jones <=

Prev by Date: Re: access control mechanisms
Next by Date: Re: Discouraging :local:
Previous by thread: Re: access control mechanisms
Next by thread: TAG and file removing
Index(es):
- Date
- Thread