On Thu, Aug 18, 2005 at 06:50:47PM -0300, Luciano Bello wrote: > Package: wnpp > Severity: wishlist > Owner: Luciano Bello <luciano@linux.org.ar> > > * Package name : opencvs > Version : unknown, posible release: 1st Sep > Upstream Author : Jean-Fran?ois Brousseau <jfb@cvs.openbsd.org> > * URL : http://www.opencvs.org/ > * License : BSD > Description : OpenBSD CVS implementation with special emphasis in security > > OpenCVS is a FREE implementation of the Concurrent Versions System, the > most popular open source revision control software. It can be used as > both client and server for repositories and provides granular access > control over data stored in the repository. It aims to be as compatible > as possible with other CVS implementations, except when particular > features reduce the overall security of the system. > > The OpenCVS project was started after discussions regarding the latest > GNU CVS vulnerabilities that came out. Although CVS is widely used, its > development has been mostly stagnant in the last years and many security > issues have popped up, both in the implementation and in the mechanisms. > There is a good reason that CVS development has stagnated. CVS is broken and there are better alternatives. Please look into those. -Roberto -- Roberto C. Sanchez http://familiasanchez.net/~roberto
Attachment:
pgp2moPa15X73.pgp
Description: PGP signature