Re: cvs.debian.org problem

To: debian-devel@lists.debian.org
Subject: Re: cvs.debian.org problem
From: Steve Greenland <steveg@moregruel.net>
Date: Wed, 29 Jan 2003 17:40:54 -0600
Message-id: <[🔎] 20030129234054.GA15337@molehole.dyndns.org>
Mail-followup-to: debian-devel@lists.debian.org
Reply-to: Steve Greenland <steveg@moregruel.net>
In-reply-to: <[🔎] 20030129213634.GC683@alcopop.org>
References: <[🔎] 3E35D6F7.60401@ameritech.net> <[🔎] 20030128100553.GA31508@finlandia.infodrom.north.de> <[🔎] 20030128102718.GY17342@xs4all.nl> <[🔎] 20030128143507.GN3088@finlandia.Infodrom.North.DE> <[🔎] 20030128172034.GA22638@home.ouaza.com> <[🔎] 20030128223908.GB31045@molehole.dyndns.org> <[🔎] E18dnxN-0001Vm-00@mid.downhill.at.eu.org> <[🔎] 20030129213634.GC683@alcopop.org>

On 29-Jan-03, 15:36 (CST), debian@alcopop.org wrote: 
> On Wed, Jan 29, 2003 at 09:52:29AM +0100, Andreas Metzler wrote:
> 
> > Running it chrooted under a non-priviledged user-id in a directory
> > where /this/ user has no write access should make the risk tolerable.
> > Iirc cvsd (I don't know whether it is in Debian) can do this.
> 
> Ideally of course, the security problems could be solved. How 
> viable is this option?

apt-get install subversion

Other than that, probably not much. Pserver is a hack, the problems
are inherent in CVS and the pserver protocol, rather like telnet (you
can't fix telnet's problem without making it not-telnet). If it was just
a coding problem, I think it would have been fixed by now, it's not
something new.

Steve

-- 
Steve Greenland
    The irony is that Bill Gates claims to be making a stable operating
    system and Linus Torvalds claims to be trying to take over the
    world.       -- seen on the net

Reply to:

Follow-Ups:
- Re: cvs.debian.org problem
  - From: Brian May <bam@debian.org>
- Re: cvs.debian.org problem
  - From: Matt Zimmerman <mdz@debian.org>

References:
- cvs.debian.org problem
  - From: "F. Heitkamp" <heitkamp@ameritech.net>
- Re: cvs.debian.org problem
  - From: Martin Schulze <joey@infodrom.org>
- Re: cvs.debian.org problem
  - From: Thomas Wouters <thomas@xs4all.net>
- Re: cvs.debian.org problem
  - From: Martin Schulze <joey@infodrom.org>
- Re: cvs.debian.org problem
  - From: Raphael Hertzog <hertzog@debian.org>
- Re: cvs.debian.org problem
  - From: Steve Greenland <steveg@moregruel.net>
- Re: cvs.debian.org problem
  - From: Andreas Metzler <ametzler@downhill.at.eu.org>
- Re: cvs.debian.org problem
  - From: debian@alcopop.org

Prev by Date: ITU bug#1
Next by Date: Re: help with g++ transition of FAM
Previous by thread: Re: cvs.debian.org problem
Next by thread: Re: cvs.debian.org problem
Index(es):
- Date
- Thread