info-cvs
[Top][All Lists]
Advanced

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: clarification / issue on CVS over SSH.


From: gsm . beamon
Subject: Re: clarification / issue on CVS over SSH.
Date: 1 Nov 2006 14:13:06 -0800
User-agent: G2/1.0

Part of the problem was good old fashioned chmod's. Although I can't
tell which was the culprit, making the home dir, the .ssh dir, and the
authorized_keys2 file itself to 755, I can redo the procedure below for
UNIX login CVS on the server box. (That's good because the procedure
below causes the repository entries to be owned by root which would
hose up other users and CVS itself.) I suspect any login will work.
Also, I don't think SELinux is a problem in this thread.

address@hidden wrote:
> All-
>
> I followed the instructions on how to enable a box to access a CVS
> repository over SSH. It's working (with one significant limitation) and
> generated the need for a clarification or two.
>
> Suppose the box with the CVS repository is called ``the server" and the
> box remotely accessing the repository is called ``local box."
>
> Here is my first question. One needs to place the .ssh/authorized_keys2
> file on the server box. But under which user? I was led to understand
> that any, valid UNIX login would be OK. So options could include
> ``root", ``cvs". [Note "user=cvs" per /etc/xinetd.d/cvspserver"]
>
> I can only make the setup work if the authorized_keys2 file is placed
> in root's .ssh directory. I can't make it work under login cvs or a
> plain-jane UNIX login called ``smiller". Smiller is my typical login.
> In fact smiller's login is configured to set CVSROOT to be
> ":pserver:address@hidden:/var/cvsroot" where localhost==bo0 and is where I
> do most of my development. Any comments? [Is this a gosh-darn SELinux
> issue?]
>
> With the setup working under only one login (``root" on the server box)
> I am wondering how I can configure a second anonymous CVS login over
> SSH.
>
> Here is my procedure for setup and exercising the setup. It's short and
> sweet, however, this procedure assumes ``root" on the server box.
>
> 1. On local box [CYGWIN] under a login ``smiller":
>     ssh-keygen -t dsa [ENTER]  followed by entering passcode
>
> 2. On local box:
>     using sftp/scp etc. copy /home/smiller/.ssh/id_dsa.pub ===>
> /root/.ssh/authorized_keys2
>     so that authorized_keys2 is in root's .ssh on the server box.
>
> steps 1 and 2 only have to be done once.
>
> 3. On local box setup ssh-agent so that don't have to enter passwords
> all the time:
>
>     eval $( ssh-agent -s )
>     ssh-add [ENTER] and re-enter passcode when prompted
>
>     Now perform steps (4) and (5) in same shell as step (3).
>
> 4. On local box, configure CVS to access remote repository
>
>     export CVS_RSH=ssh
>     export CVSROOT=":ext:address@hidden:/var/cvsroot"
>
> 5. exercise CVS and what it work remotely (cvs login/logout isn't
> required)
> 
>     cvs checkout <module>



reply via email to

[Prev in Thread] Current Thread [Next in Thread]