Re: cvs security - ssh vs pserver?

To: debian-user@lists.debian.org
Subject: Re: cvs security - ssh vs pserver?
From: "Eric G. Miller" <egm2@jps.net>
Date: Tue, 27 Nov 2001 19:41:23 -0800
Message-id: <[🔎] 20011127194123.4ea8f109.egm2@jps.net>
In-reply-to: <[🔎] 20011127101421.A6350@bmrb.wisc.edu>
References: <[🔎] 20011127015150.A3681@dirac.org> <[🔎] 20011127101421.A6350@bmrb.wisc.edu>

On Tue, 27 Nov 2001 10:14:21 -0600
Dimitri Maziuk <dmaziuk@yola.bmrb.wisc.edu> wrote:
[snip]
> Yes, pswerver sends everything in the clear and all that.
> Edit /etc/shadow and set your cvsuser's password to NP 
> (or whatever Debian uses to disable logins). Let your
> users download the *private* key of cvsuser. Set up cvsuser
> account so that ssh logins can only run cvs.

Don't you mean the *public* key?  In fact, don't you want
the server to have the public key of the user, and then that
user has to use their private key and their passphrase to
authenticate themselves to the CVS server via ssh?  I'm on
the user end of such a setup, and I don't have any key for
the server but it does have my public key.  Use ssh-agent
to manage authentication/passphrase...

-- 
Eric G. Miller <egm2@jps.net>

Reply to:

Follow-Ups:
- Re: cvs security - ssh vs pserver?
  - From: martin f krafft <madduck@madduck.net>
- Re: cvs security - ssh vs pserver?
  - From: Dimitri Maziuk <dmaziuk@yola.bmrb.wisc.edu>

References:
- cvs security - ssh vs pserver?
  - From: Peter Jay Salzman <p@dirac.org>
- Re: cvs security - ssh vs pserver?
  - From: Dimitri Maziuk <dmaziuk@yola.bmrb.wisc.edu>

Prev by Date: RedHat to Debian migration
Next by Date: panel launchers and environment
Previous by thread: Re: cvs security - ssh vs pserver?
Next by thread: Re: cvs security - ssh vs pserver?
Index(es):
- Date
- Thread