info-cvs
[Top][All Lists]
Advanced

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: authentication failed


From: Mark D. Baushke
Subject: Re: authentication failed
Date: Thu, 17 Apr 2003 23:14:14 -0700

mehul  choube <address@hidden> writes:

> > As per your earlier posting, you changed password for a one user.
> > That needs to be told to CVS that, that user has changed the
> > password.
> > Usually in pserver mode of authentication password files in /etc and
> > CVSROOT directory need to be kept synchronised. So when you changed
> > the password that is reflected  in /etc/password(and shadow) , need
> > to be communicated to passwd file in CVSROOT also.
> 
>      hey!!! there is no such file as passwd in the CVSROOT of my
> repository.
> 
> mehul.

cvs can fall back to use system authentication. When authenticating a
password, the server first checks for the user in the
$CVSROOT/CVSROOT/passwd file. If it finds the user, it will use that
entry for authentication as described above. But if it does not find the
user, or if the cvs 'passwd' file does not exist, then the server can
try to authenticate the username and password using the operating
system's user-lookup routines (this "fallback" behavior can be disabled
by setting 'SystemAuth=no' in the cvs 'config' file,
'$CVSROOT/CVSROOT/config'.

Be aware, however, that falling back to system authentication might be a
security risk: cvs operations would then be authenticated with that
user's regular login password, and the password flies across the network
in plaintext.

        -- Mark




reply via email to

[Prev in Thread] Current Thread [Next in Thread]