Re: CVS authentication

info-cvs

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: CVS authentication

From:	Todd Denniston
Subject:	Re: CVS authentication
Date:	Thu, 28 Feb 2008 09:18:37 -0500
User-agent:	Thunderbird 2.0.0.9 (X11/20071031)

Shawn Henson wrote, On 02/27/2008 02:47 PM:

Is there a way to capture/log authentication via
pserver?

I have a requirement to monitor login activity which
would include, cvs "login" and cvs "up" activity.Currently I am able to capture commit history via
loginfo.

Thank You,

Shawn Henson

--Shawn Henson


Are you tied to using pserver?

If not, and you are using system accounts, I believe ssh access (:ext: withCVS_RSH=ssh) is logged fairly tightly by sshd and if you want tighter, you cantweak sshd_config.

Also if it is a real 'requirement' then you might get a pass on the audit ifusing ssh, but I suspect anyone who knows pserver would require you to PROVEit does it's logging correctly, and then tell you to use ssh.

As Arther indicated CVSNT has some other logging capabilities. I don't knowif external entity has ever audited CVSNT's 'failsafe logging' but it has amuch better chance (going from Arther's description) of passing an audit thanpserver on normal CVS ever had.


--
Todd Denniston
Crane Division, Naval Surface Warfare Center (NSWC Crane)
Harnessing the Power of Technology for the Warfighter

[Prev in Thread]

Current Thread

[Next in Thread]

CVS authentication, Shawn Henson, 2008/02/27
- Re: CVS authentication, Todd Denniston <=
- RE: CVS authentication, Arthur Barrett, 2008/02/27

Prev by Date: RE: CVS authentication
Next by Date: CVSNT convert tag to branch
Previous by thread: CVS authentication
Next by thread: RE: CVS authentication
Index(es):
- Date
- Thread