[Top][All Lists]
[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
Re: security question
|
From: |
Frederic Brehm |
|
Subject: |
Re: security question |
|
Date: |
Thu, 12 Dec 2002 11:23:56 -0500 |
At 10:51 AM 12/12/2002, Phil R Lawrence wrote:
Now, about security. We would be a multi-client shop, so I need SSH to
encrypt sign-on info. Also, to make auditors very happy, we need to grant
and deny write security to various projects in the repository.
We are a multi-client shop, too. We use a combination of group membership
explained in http://www.cvshome.org/docs/manual/cvs_2.html#SEC13 and
completely separate repository roots. A loginfo script runs to insure that
permissions are correct after every commit.
Every commercial client gets their very own separate repository. Government
unclassified clients may or may not share modules within a repository
depending on the nature of the projects. Our own proprietary software has
its own set of repositories.
We use multiple repositories to make it easier to audit where things came
from. It's also easier to archive all of the software that goes with a
single client when all of the software is under a CVSROOT unique to that
client.
Fred
_______________________________________________________________
Frederic W. Brehm, Sarnoff Corporation, http://www.sarnoff.com/
- binaries, Phil R Lawrence, 2002/12/10
- Re: binaries, david, 2002/12/11
- Re: binaries, Phil R Lawrence, 2002/12/11
- Re: binaries, Mike Ayers, 2002/12/12
- security question, Phil R Lawrence, 2002/12/12
- Re: security question, Larry Jones, 2002/12/12
- Re: security question, Noel Yap, 2002/12/12
- Re: security question,
Frederic Brehm <=
- Re: security question, Geoff Beier, 2002/12/12
- Re: security question, Steven Tryon, 2002/12/12
- Re: security question, Noel Yap, 2002/12/13
- Re: security question, Phil R Lawrence, 2002/12/13