[ On Monday, February 25, 2002 at 21:06:40 (+0300), Leonid Krutyansky wrote: ] What, exactly, do you mean by "lock"? CVS controls commit permissions by who can write to the directory in the repositor
Hi, I'm starting using CVS and would be highly appreciated if somebody could answer the following questions: 1. I need to lock some (not all) files from editing by other users. I have WinCVS 1.2 clie
[ On Friday, February 22, 2002 at 05:46:34 (-0800), David A. Desrosiers wrote: ] What don't you understand about "read-only anonymous access"? Where in that phrase does it say anything about allowing
Great, then once again, you make absolutely no sense. If I have a copy of the master, which allows anonymous read-only access, and that copy also accepts authenticated commits (via whatever solution
[ On Thursday, February 21, 2002 at 18:44:19 (-0800), David A. Desrosiers wrote: ] I don't personally know if NetBSD's implementation of anonymous SSH access to their CVS repository is vulnerable or
[ On Thursday, February 21, 2002 at 18:38:15 (-0800), David A. Desrosiers wrote: ] If you're blind and stupid enough to sync a read-only anonymously accessed repository back to the master then you're
Sorry, I've gotta jump in for a minute... Greg is right about SSH v pserver, however. Read up on rsync via an ssh tunnel to do this. Sudo, and noshell for a non-priviliged role account are also advis
And if the copy needs to get sync'd back to the "real" repository (a definate requirement), there goes your security. Next idea? i.e. you give them no access. Hence, pserver. I don't want to give ou
[ On Thursday, February 21, 2002 at 17:58:51 (-0500), Larry Jones wrote: ] Just to be pedantic...... Note cvsclient.texi documents not just the cvspserver protocol per se -- but rather the whole gene
[ On Thursday, February 21, 2002 at 18:59:36 (GMT), David A. Desrosiers wrote: ] There's only _EXACTLY_ one case where cvspserver is in any way more secure than giving out real accounts, and that's w
I'm intrigued. If you feel so strongly about eradicating pserver, then help those who wish to understand why. Have you written a HOWTO that explains how to set up read-only anonymous ssh access as w
Except in the cases where using pserver is actually _MORE_ secure than giving users a valid unix account on your server. I could very well trust my developers, and give them shell accounts, but I ca
since company) ssh type would not the client have to support it then? this way the client does not have to support ssh and we can then have more clients to choose from, atleast that is what I think
Sorry, but can you provide a reference url, or ftp path for this update? I checked out on http://ccvs.cvshome.org/servlets/ProjectDownloadList and the last version posted was v1.11p1 on 2001-10-16.
posted last september to address@hidden, no response from CVS community so I thought it was as designed. Anyhow, I wrote a taginfo trigger to validate user is in writers file to compensate. http://ww
It has been brought to my attention that CVS 1.11.1 and 1.11.1p1 have a bug in pserver mode that allows read-only users to run the "tag" command. This allows read-only users to add and, more importan
Greg has responded with most of what I wanted to say. I do have something to add, though. If your intent is to have students be able to grant access to other students, SSH is sufficient and is way mo
If you want security (as the subject of your email suggests), use SSH instead of pserver. pserver has many insecurities. __________________________________________________ Do You Yahoo!? Great stuff
I have a patch at http://home.attbi.com/~minyard that does what you want, and it has an SSL-based pserver. It does not support these functions over SSH, though. If you are willing to set up ACLs on y