info-cvs archive search

381. Re: Security (score: 161)

Author: HIDDEN

Date: Mon, 17 Sep 2001 02:16:12 +0100

Quoting Stevie O (address@hidden): Why would you rather implement another authentication mechanisem than use what has been proven to work? Is there a particular reason that you can not create restric

/archive/html/info-cvs/2001-09/msg00497.html (5,615 bytes)

382. Re: Security (score: 161)

Author: HIDDEN

Date: Sun, 16 Sep 2001 20:37:26 -0400

Use SSH and you suddenly have a wealth of authentication methods to chose from. If you really need that strong authentication you should probably know how use SSH to achieve this. The method I sugges

/archive/html/info-cvs/2001-09/msg00495.html (5,716 bytes)

383. RE: Remote cvs and security (score: 174)

Author: HIDDEN

Date: Tue, 11 Sep 2001 03:20:47 -0400

Greg, I would like to know what alternatives you are referring to. The alternative, although it might not be what Greg is refering to, is GSSAPI (aka. gserver in CVS). For the time being, GSSAPI supp

/archive/html/info-cvs/2001-09/msg00293.html (8,692 bytes)

384. RE: Remote cvs and security (score: 166)

Author: HIDDEN

Date: Tue, 11 Sep 2001 00:35:58 -0400 (EDT)

[ On Monday, September 10, 2001 at 19:37:23 (-0500), Colin Bester wrote: ] SSH, even within the VPN, for one. Kerberized rsh for another. Even just plain old rsh is better than pserver if you do real

/archive/html/info-cvs/2001-09/msg00284.html (6,056 bytes)

385. RE: Remote cvs and security (score: 197)

Author: HIDDEN

Date: Mon, 10 Sep 2001 19:37:23 -0500

Greg, I would like to know what alternatives you are referring to. The way I understand it is that all passwords used between client and pserver are sent in clear text and as such irrespective of wha

/archive/html/info-cvs/2001-09/msg00278.html (7,806 bytes)

386. RE: Remote cvs and security (score: 189)

Author: HIDDEN

Date: Mon, 10 Sep 2001 18:10:53 -0400 (EDT)

[ On Monday, September 10, 2001 at 14:22:25 (-0700), Josh Baudhuin wrote: ] I suppose that's fine if you've got a 100% private and 100% trusted (Virtual) Private Network, and you 100% trust all the c

/archive/html/info-cvs/2001-09/msg00274.html (6,081 bytes)

387. RE: Remote cvs and security (score: 172)

Author: HIDDEN

Date: Mon, 10 Sep 2001 14:22:25 -0700

Well, pserver + CVSROOT/passwd is one thing, but using pserver with the default authentication of the system isn't so bad. Passwords are stored in the same way that /etc/passwd encrypts them. This is

/archive/html/info-cvs/2001-09/msg00270.html (6,112 bytes)

388. Re: Remote cvs and security (score: 161)

Author: HIDDEN

Date: Mon, 10 Sep 2001 08:50:52 -0700

This is a red herring. Avoid using pserver, Give users accounts, and set them up using ssh. If you are that paranoid about your developers compromising system passwords, then put them on a separate s

/archive/html/info-cvs/2001-09/msg00249.html (5,753 bytes)

389. Re: Re: [Cvsnt] :ntserver: from unix/linux accessible? (score: 22)

Author: HIDDEN

Date: Fri, 07 Sep 2001 06:30:43 -0400

In theory someone could build an extension to samba that could open named pipes, but I don't think anyone has done any work in this area yet. Maybe try asking on the samba list to see if it's possib

/archive/html/info-cvs/2001-09/msg00193.html (11,579 bytes)

390. Remote login demands password when none defined - dont want it to anyway? (score: 12)

Author: HIDDEN

Date: Thu, 30 Aug 2001 17:52:38 +0100

When I login to a new cvs installation (on a redhat 6.2 linux box) It demands a password but I dont want it to - and I dont know what it is either (anyway). I have played with CVS for about 12 hours

/archive/html/info-cvs/2001-08/msg01201.html (6,218 bytes)

391. Re: Help - CVS has been dumped on me! (score: 9)

Author: HIDDEN

Date: Tue, 21 Aug 2001 10:47:13 -0400

Sounds to me like something is misconfigured on the server end (why is it looking at /dev/null/.cvsignore ??). Possibly missing the -f parameter on the cvs command line used on the server side (in th

/archive/html/info-cvs/2001-08/msg00858.html (8,818 bytes)

392. Help - CVS has been dumped on me! (score: 9)

Author: HIDDEN

Date: Tue, 21 Aug 2001 15:38:20 +0100

Hi (I can't get onto a news server - for some reason it's been dead for about 2 months. Apologies if this is the wrong place to send it - although this is what the link generated. I've been told to l

/archive/html/info-cvs/2001-08/msg00857.html (8,962 bytes)

393. CVS passwd patch (score: 59)

Author: HIDDEN

Date: Thu, 16 Aug 2001 08:50:32 -0400

I've updated a previously available patch to the 1.11.1p1 release (was against 1.10.8). Summary: Provides improved security and convenience by organizing CVS passwords into one file '/etc/cvs.passwd'

/archive/html/info-cvs/2001-08/msg00787.html (22,678 bytes)

394. (no subject) (score: 9)

Author: HIDDEN

Date: Mon, 13 Aug 2001 05:08:48 -0400

Received: from fencepost.gnu.org (fencepost.gnu.org [199.232.76.164]) by gateway.camelot.jp (8.9.3/8.9.3/Debian 8.9.3-21) with ESMTP id BAA26073 for <address@hidden>; Wed, 7 Feb 2001 01:52:07 +0900

/archive/html/info-cvs/2001-08/msg00413.html (10,538 bytes)

395. (no subject) (score: 9)

Author: HIDDEN

Date: Mon, 13 Aug 2001 05:08:37 -0400

Received: from fencepost.gnu.org (address@hidden [199.232.76.164]) by gateway.camelot.jp (8.9.3/8.9.3/Debian 8.9.3-21) with ESMTP id AAA25650 for <address@hidden>; Wed, 7 Feb 2001 00:23:46 +0900 Rec

/archive/html/info-cvs/2001-08/msg00408.html (10,561 bytes)

396. (no subject) (score: 9)

Author: HIDDEN

Date: Mon, 13 Aug 2001 05:07:48 -0400

Received: from fencepost.gnu.org (fencepost.gnu.org [199.232.76.164]) by gateway.camelot.jp (8.9.3/8.9.3/Debian 8.9.3-21) with ESMTP id JAA17018 for <address@hidden>; Tue, 6 Feb 2001 09:11:07 +0900

/archive/html/info-cvs/2001-08/msg00347.html (9,870 bytes)

397. (no subject) (score: 9)

Author: HIDDEN

Date: Mon, 13 Aug 2001 05:07:42 -0400

Received: from fencepost.gnu.org (fencepost.gnu.org [199.232.76.164]) by gateway.camelot.jp (8.9.3/8.9.3/Debian 8.9.3-21) with ESMTP id IAA16913 for <address@hidden>; Tue, 6 Feb 2001 08:12:19 +0900

/archive/html/info-cvs/2001-08/msg00346.html (9,090 bytes)

398. Re: CVS_SERVER (score: 15)

Author: HIDDEN

Date: Wed, 1 Aug 2001 18:31:13 -0400 (EDT)

[ On Wednesday, August 1, 2001 at 15:09:13 (-0700), Mark D. Baushke wrote: ] To jump way off on a tangent for a second, no, it most certainly is not doin the cvspserver protocol any injustice -- in f

/archive/html/info-cvs/2001-08/msg00051.html (15,943 bytes)

399. SSL server plus access control lists patch (score: 12)

Author: HIDDEN

Date: 28 Jul 2001 21:52:35 -0500

I've been working to learn SSL, and I created a CVS pserver-like access method that runs over SSL. I called it sserver. This avoids sending plaintext passwords and data between the client and server,

/archive/html/info-cvs/2001-07/msg01087.html (5,572 bytes)

400. Re: Reworking the client and server access method code (score: 14)

Author: HIDDEN

Date: Fri, 27 Jul 2001 14:21:51 -0400 (EDT)

[ On , July 25, 2001 at 22:32:23 (-0500), address@hidden wrote: ] If cvspserver is sufficient security then so is RSH. Let them use RSH. "rsh -k" works just fine in a Kerberos environtment too. Let t

/archive/html/info-cvs/2001-07/msg01072.html (5,936 bytes)