[Date Prev][Date Next] [Thread Prev][Thread Next] [Date Index] [Thread Index]

Re: cvs.debian.org problem

On 29-Jan-03, 15:36 (CST), debian@alcopop.org wrote: 
> On Wed, Jan 29, 2003 at 09:52:29AM +0100, Andreas Metzler wrote:
> > Running it chrooted under a non-priviledged user-id in a directory
> > where /this/ user has no write access should make the risk tolerable.
> > Iirc cvsd (I don't know whether it is in Debian) can do this.
> Ideally of course, the security problems could be solved. How 
> viable is this option?

apt-get install subversion

Other than that, probably not much. Pserver is a hack, the problems
are inherent in CVS and the pserver protocol, rather like telnet (you
can't fix telnet's problem without making it not-telnet). If it was just
a coding problem, I think it would have been fixed by now, it's not
something new.


Steve Greenland
    The irony is that Bill Gates claims to be making a stable operating
    system and Linus Torvalds claims to be trying to take over the
    world.       -- seen on the net

Reply to: