[Savannah-hackers] Re: bug in Anon CVS how to

[Mathieu Roy]

"Robert J. Chassell" <address@hidden> said:

>    Try using only one '@' in the CVS repository's definition.
> 
> My apologies, my mistake.  However, I did use only one '@' in the
> other test and that failed.  I just reproduced the problem:
> 
> Without a ~/.cvspass file, you cannot log in anonymously.
> 
>      $ cvs -d:pserver:address@hidden:/cvsroot/softfree login
>     Logging in to :pserver:address@hidden:2401/cvsroot/softfree
>     CVS password: 
>     cvs login: warning: failed to open /home/guest/.cvspass for
>     reading: No such file or directory
> 
> This is using  Concurrent Versions System (CVS) 1.11.2 (client/server)
> After I ran
> 
>     touch ~/.cvspass
> 
> I was able to log in anonymously and download from the CVS repository.
> 
> Based on what Mathieu Roy <address@hidden> said, this may be a bug in
> this version of CVS.  However, I am sure that many of the
> people who will use this particular repository will use this version
> of cvs; so people still need to be told how to solve the problem.

According to CVS doc

"Before connecting to the server, the client must log in with the command cvs 
login. Logging in verifies a password with the server, and also records the 
password for later transactions with the server. The cvs login command needs to 
know the username, server hostname, and full repository path, and it gets this 
information from the repository argument or the CVSROOT environment variable.

cvs login is interactive -- it prompts for a password:

cvs -d :pserver:address@hidden:/usr/local/cvsroot login
CVS password:

The password is checked with the server; if it is correct, the login succeeds, 
else it fails, complaining that the password was incorrect.

Once you have logged in, you can force CVS to connect directly to the
server and authenticate with the stored password: 

[...].
Passwords are stored by default in the file `$HOME/.cvspass'. Its format is 
human-readable, but don't edit it unless you know what you are doing. The 
passwords are not stored in cleartext, but are trivially encoded to protect 
them from "innocent" compromise (i.e., inadvertently being seen by a system 
administrator who happens to look at that file)."

It means that normally, you do not even need to know anything about
this .cvspass file, and this is not require to succesfully download
your tree.

People that need to be told of the problem is CVS developers / debian
CVS package maintainer.


> You could add this to the anon-cvs.texi file I sent you, too.
> (Obviously, that file needs editing.  You might, for example, want to
> change the relevant paragraph to read: 
> 
>     When he used the `guest' account to test these commands, Robert
>     J. Chassell found that his version 1.11.2 of CVS needed a
>      file.  If none existed, none was created
>     automatically.  He created one using the `touch' command.
>     However, this problem appears to be a bug in the version of CVS
>     that he is using, and the need should go away.

That's ok, we will add this text if 3 differents persons encounter the
problem as you.



-- 
Mathieu Roy
 
 << Profile  << http://savannah.gnu.org/users/yeupou <<
 >> Homepage >> http://yeupou.coleumes.org           >>
 << GPG Key  << http://gpg.coleumes.org              <<