Re: cvs and security

To: Peter Jay Salzman <p@dirac.org>
Cc: Debian user mailing list <debian-user@lists.debian.org>
Subject: Re: cvs and security
From: martin f krafft <madduck@madduck.net>
Date: Tue, 27 Nov 2001 19:25:32 +0100
Message-id: <[🔎] 20011127192532.A21852@fishbowl.madduck.net>
Mail-followup-to: Peter Jay Salzman <p@dirac.org>, Debian user mailing list <debian-user@lists.debian.org>
In-reply-to: <[🔎] 20011127094730.A11934@dirac.org>
References: <[🔎] 20011127094730.A11934@dirac.org>

* Peter Jay Salzman <p@dirac.org> [2001.11.27 09:47:30-0800]:
> is there a way to use ssh for cvs without giving people shell access on my
> machine?   giving user cvs a shell of /bin/false seems to screw up cvs.

no, but look at stunnel and tunnel pserver traffic through SSL.
pserver is insecure because it sends the CVS data clear-text, works
with clear-text passwords, and because it runs as root.

-- 
martin;              (greetings from the heart of the sun.)
  \____ echo mailto: !#^."<*>"|tr "<*> mailto:"; net@madduck
  
your fly might be open (but don't check it just now).

Attachment: pgpA3EX7KrJLF.pgp
Description: PGP signature

Reply to:

References:
- cvs and security
  - From: Peter Jay Salzman <p@dirac.org>

Prev by Date: VIA sound chipset
Next by Date: Re: cvs security - ssh vs pserver?
Previous by thread: Re: cvs and security
Next by thread: Click of Death or RE: Second dead drive(?) or is it(?)
Index(es):
- Date
- Thread