[Top][All Lists]
[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
Re: Remote cvs and security
From: |
Mike Castle |
Subject: |
Re: Remote cvs and security |
Date: |
Mon, 10 Sep 2001 08:50:52 -0700 |
User-agent: |
Mutt/1.3.18i |
On Mon, Sep 10, 2001 at 08:41:34AM -0500, Colin Bester wrote:
> Creating CVSROOT/passwd file is fine for attempting to protect users
> system passwords, but still leaves the repository vunerable itself.
This is a red herring.
Avoid using pserver,
Give users accounts, and set them up using ssh.
If you are that paranoid about your developers compromising system
passwords, then put them on a separate system that has no privileges, so
even if they do get root, they can't affect the rest of your network.
mrc
--
Mike Castle address@hidden www.netcom.com/~dalgoda/
We are all of us living in the shadow of Manhattan. -- Watchmen
fatal ("You are in a maze of twisty compiler features, all different"); -- gcc
Re: Remote cvs and security, David Fuller, 2001/09/10