Re: cvs security - ssh vs pserver?
On Tue, Nov 27, 2001 at 10:08:57AM -0800, Peter Jay Salzman wrote:
| begin: Joey Hess <joey@kitenet.net> quote
| > Peter Jay Salzman wrote:
| > > i just found out that using method 2, you can't assign a shell
| > > of /bin/false. cvs won't work. so option 2 also means "giving
| > > a shell account on my machine".
| >
| > Read http://kitenet.net/programs/sshcvs
| >
| > > any thoughts? is pserver really as insecure as dpkg claims in the
| > > configuration of the package?
| >
| > It uses plain-text passwords, which is pretty insecure, yes.
|
| i have no problem with plain text passwords.
If you are using a plaintext password, why bother with a password at
all?
-D
--
A)bort, R)etry, B)ang it with a large hammer
Reply to: