[Date Prev][Date Next] [Thread Prev][Thread Next] [Date Index] [Thread Index]

Re: Bug#323855: ITP: opencvs -- OpenBSD CVS implementation with special emphasis in security



On Thu, Aug 18, 2005 at 06:50:47PM -0300, Luciano Bello wrote:
> Package: wnpp
> Severity: wishlist
> Owner: Luciano Bello <luciano@linux.org.ar>
> 
> * Package name    : opencvs
>   Version         : unknown, posible release: 1st Sep
>   Upstream Author : Jean-Fran?ois Brousseau <jfb@cvs.openbsd.org>
> * URL             : http://www.opencvs.org/
> * License         : BSD
>   Description     : OpenBSD CVS implementation with special emphasis in security
> 
> OpenCVS is a FREE implementation of the Concurrent Versions System, the
> most popular open source revision control software. It can be used as
> both client and server for repositories and provides granular access
> control over data stored in the repository. It aims to be as compatible
> as possible with other CVS implementations, except when particular
> features reduce the overall security of the system.
> 
> The OpenCVS project was started after discussions regarding the latest
> GNU CVS vulnerabilities that came out. Although CVS is widely used, its
> development has been mostly stagnant in the last years and many security
> issues have popped up, both in the implementation and in the mechanisms.
> 

There is a good reason that CVS development has stagnated.  CVS is
broken and there are better alternatives.  Please look into those.

-Roberto

-- 
Roberto C. Sanchez
http://familiasanchez.net/~roberto

Attachment: pgp2moPa15X73.pgp
Description: PGP signature


Reply to: