RE: How 2 Secure the repository?

info-cvs

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

RE: How 2 Secure the repository?

From:	Greg A. Woods
Subject:	RE: How 2 Secure the repository?
Date:	Mon, 11 Mar 2002 14:43:51 -0500 (EST)

[ On Monday, March 11, 2002 at 13:42:30 (-0500), Vishal Jain wrote: ]
> Subject: RE: How 2 Secure the repository?
>
> CVS bin       :       setgid "cvs" binary, setting permission as user:cvsadmin

I would not do that if I were you.  CVS is a big hunk of code that was
not designed to run with set-ID enhanced privileges.  There are also
probably a dozen or more places for a trojan to be put in the way of an
authorised administrator.

-- 
                                                                Greg A. Woods

+1 416 218-0098;  <address@hidden>;  <address@hidden>;  <address@hidden>
Planix, Inc. <address@hidden>; VE3TCP; Secrets of the Weird <address@hidden>

[Prev in Thread]

Current Thread

[Next in Thread]

How 2 Secure the repository?, Dustin Cavanaugh, 2002/03/11
- Re: How 2 Secure the repository?, Noel Yap, 2002/03/11
- RE: How 2 Secure the repository?, Douglas Finkle, 2002/03/11
  - RE: How 2 Secure the repository?, Dustin Cavanaugh, 2002/03/11
    - RE: How 2 Secure the repository?, Noel Yap, 2002/03/11
- RE: How 2 Secure the repository?, Vishal Jain, 2002/03/11
  - Re: How 2 Secure the repository?, Larry Jones, 2002/03/11
  - RE: How 2 Secure the repository?, Greg A. Woods <=
    - RE: How 2 Secure the repository?, Dustin Cavanaugh, 2002/03/11
    - RE: How 2 Secure the repository?, Greg A. address@hidden (Greg A. Woods; Planix, Inc.), 2002/03/11
- RE: How 2 Secure the repository?, Douglas Finkle, 2002/03/11

Prev by Date: �廪��ѧ��Ϣʱ��Ŀͻ��ϵ��߼��޿γ�
Next by Date: Re: CVS and Jar files: Should you import Jar into the Repository?Why or why not
Previous by thread: Re: How 2 Secure the repository?
Next by thread: RE: How 2 Secure the repository?
Index(es):
- Date
- Thread