It would be much Much MUCH better to begin to deprecate any and all support for "cvs" passwords than to give any further support to the false illusion of any security someone might pretend to see in
Sorry I missed your earlier patch, but I already commited this one and it's in the 1.11.11 & 1.12.5 releases. This email was actually asking about two different patches. :) Derek - -- *8^) Email: add
Feature CVS 1.12.5 has been released. Feature releases contain new features as well as all the bug fixes from the stable releases. This release adds code to the CVS server to prevent it from continui
Stable CVS 1.11.11 has been released. Stable releases contain only bug fixes from previous versions of CVS. This release adds code to the CVS server to prevent it from continuing as root after a user
I posted a patch long ago that did just this for pserver connections. If the mapped name correlates to root (uid 0) then access is denied. Go for it. -- Mike Sutton SAIC Division 397 (937) 431-2273 F
The samba<->NT password syncronization issue asside, from a security point of view you wouldn't want to do this with pserver, which sends passwords in (trivially encoded) cleartext. Perhaps an :ext v
Mark, Thanks for the help. I changed the top level dir that contains the code base to 2770 and still get the same error: cvs upd cvs [update aborted]: unrecognized auth response from lcs002: cvs pser
Are you using client/server with :ext: or :pserver: or are you using I suggest you may want to run 770 and depending on your OS, you may want to use the group sticky-bit to force newly created files
Hi, There must be at least one operating system user for you to use ext with ssh because ssh is a remote login method. The purpose of ssh is to allow a user a remote login so it does not make sense t
I also have a question.Maybe you have told about it but only I'm not understand. I want to know,via :ext:/SSH,weather a user must be and OS user?No matter how security the ssh is.I don't want give th
[ On Sunday, November 16, 2003 at 11:22:41 (+0200), Stephen Biggs wrote: ] SSH is SSH. It's a true remote job execution protocol with the ability to enforce strong authentication and full Unix author
~From the NEWS file: . . . removed I suppose it could have noted that this was for security reasons. Only the administrator is deemed to be allowed to decide what commands to log or not to log. Derek
Is it just the ADD/COMMIT over an NFS that would cause the corruption, and, presuming an as-of-yet uncorrupted repository, doing a CHECK-OUT over an NFS mounted repository would NOT cause corruption;
The correct question is this: "Is it ever acceptable that a 'cvs commit' may corrupt the repository without any notification of any problems whatsoever until much time has passed and there is a need
Have you tested it? Do this on the command line : CVS_RSH=ssh CVSROOT=:ext:address@hidden:/CVS export CVS_RSH CVSROOT cvs co <module> (where <module> is a name of a module you have in CVS). Are you t
okay. are you able to 'cvs checkout CVSROOT' ? So, you plan to use either rsh or ssh as your transport depending on the value of your CVS_RSH environment variable. It would be best if you get cvs wor
(Hey... forgot to mention that we've looked at the usual site..Google/cvs.ccvshome.org/etc... with mo real luck....) Hi.... I'm trying to install CVS and CVSWEB on a Linux RH8.0 box. I'm running Apac
Hi.... I'm trying to install CVS and CVSWEB on a Linux RH8.0 box. I'm running Apache. I think I have CVS working... but I'm not really sure!!! I have CVSROOT set to --> :ext:address@hidden:/CVS When
OK a bit more progress here now this message: cvs [login aborted]: unrecognized auth response from <machine>: cvs pserver: cannot open <dir>/CVS/CVSROOT/config: Permission denied I need to provide a