Re: preliminary ACL support in cvs-nserver

info-cvs

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: preliminary ACL support in cvs-nserver

From:	Greg A. Woods
Subject:	Re: preliminary ACL support in cvs-nserver
Date:	Sat, 29 Sep 2001 22:07:40 -0400 (EDT)

[ On , September 30, 2001 at 04:28:16 (+0400), Alexey Mahotkin wrote: ]
> Subject: preliminary ACL support in cvs-nserver
>
> 
> Answer: because the cvs-nserver ACL implementation does not work on a
> per-file level.

Do you understand the unix filesystem security model, especially as it
applies to CVS?  I think not.  There is no safe way to implement
per-file ACLs without doing them in the filesystem.

I think you are fooling yourself with false security.

In addition the whole concept of per-branch ACLs also suffers the very
same weaknesses that the current "cvsadmin" feature does.

-- 
                                                        Greg A. Woods

+1 416 218-0098      VE3TCP      <address@hidden>     <address@hidden>
Planix, Inc. <address@hidden>;   Secrets of the Weird <address@hidden>

[Prev in Thread]

Current Thread

[Next in Thread]

preliminary ACL support in cvs-nserver, Alexey Mahotkin, 2001/09/29
- Re: preliminary ACL support in cvs-nserver, Greg A. Woods <=
  - Re: preliminary ACL support in cvs-nserver, Alexey Mahotkin, 2001/09/30
    - Re: preliminary ACL support in cvs-nserver, Greg A. Woods, 2001/09/30
- Re: preliminary ACL support in cvs-nserver, Tobias Brox, 2001/09/30
  - Re: preliminary ACL support in cvs-nserver, Greg A. Woods, 2001/09/30
    - Re: preliminary ACL support in cvs-nserver, Tobias Brox, 2001/09/30

Prev by Date: preliminary ACL support in cvs-nserver
Next by Date: Re: Howto solve this in cvs ?
Previous by thread: preliminary ACL support in cvs-nserver
Next by thread: Re: preliminary ACL support in cvs-nserver
Index(es):
- Date
- Thread