[Top][All Lists]
[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
Re: what's to stop a developer from nuking the repository?
From: |
Greg A. Woods |
Subject: |
Re: what's to stop a developer from nuking the repository? |
Date: |
Tue, 20 Jan 2004 03:33:08 -0500 (EST) |
[ On Monday, January 19, 2004 at 15:43:35 (-0800), Mark wrote: ]
> Subject: Re: what's to stop a developer from nuking the repository?
>
> have unix command line users use :pserver:
That's really Really REALLY _B_A_D_ advice!!!!
There is absolutely _NO_ accountabilty or any other form of security in
pserver. DO NOT _EVER_ USE PSERVER FOR NON-ANONYMOUS ACCESS!!!!
The right solution is to continue to follow good systems security
practices and to make sure all your users are aware of _all_ of your
security practices.
Backups are part of that solution.
Good solid authentication, authorisation, and accountability are also
part of that solution.
--
Greg A. Woods
+1 416 218-0098 VE3TCP RoboHack <address@hidden>
Planix, Inc. <address@hidden> Secrets of the Weird <address@hidden>