info-cvs
[Top][All Lists]
Advanced
[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: what's to stop a developer from nuking the repository?

From: Greg A. Woods
Subject: Re: what's to stop a developer from nuking the repository?
Date: Tue, 20 Jan 2004 03:33:08 -0500 (EST) 
[ On Monday, January 19, 2004 at 15:43:35 (-0800), Mark wrote: ]
> Subject: Re: what's to stop a developer from nuking the repository?
>
> have unix command line users use :pserver:

That's really Really REALLY _B_A_D_ advice!!!!

There is absolutely _NO_ accountabilty or any other form of security in
pserver.  DO NOT _EVER_ USE PSERVER FOR NON-ANONYMOUS ACCESS!!!!

The right solution is to continue to follow good systems security
practices and to make sure all your users are aware of _all_ of your
security practices.

Backups are part of that solution.

Good solid authentication, authorisation, and accountability are also
part of that solution.

-- 
                                                Greg A. Woods

+1 416 218-0098                  VE3TCP            RoboHack <address@hidden>
Planix, Inc. <address@hidden>          Secrets of the Weird <address@hidden>
reply via email to
[Prev in Thread] Current Thread [Next in Thread]