[Top][All Lists]
[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
Re: CVS access - IP restricted
|
From: |
Jean LEE |
|
Subject: |
Re: CVS access - IP restricted |
|
Date: |
Mon, 21 Jun 2004 19:58:23 +0200 |
If you use the cvspserver descripted by /etc/xinet.d/cvspserver you can use
the tcpwrappers of xinetd (file /etc/hosts.allow and /etc/hosts.deny) :
in the file /etc/hosts.allow, add the line
ALL : 127.0.0.1
cvs : 192.168.0.3 192.168.0.1 (here the ip adresses or subnet you want to
allow)
in the file /etc/hosts.deny
ALL: ALL
Access will be granted like this :
if entry found in hosts.allow -> access granted
else if entry found in hosts.deny -> acess refused
else access granted.
It's why the file hosts.deny must only contain ALL: ALL
If you use inetd, it's a different. Look for more information on
tcpwrappers.
If you use another authentication server than pserver; I don't know .......
Jean
----- Original Message -----
From: "Geoff Beier" <address@hidden>
To: "Gurpreet Singh (SCM)" <address@hidden>
Cc: <address@hidden>
Sent: Monday, June 21, 2004 6:05 PM
Subject: Re: CVS access - IP restricted
>
> > can we anyhow restrict CVS access based on IP.
> > Say like want to deny certain IP's to being connected to the CVS server
> > (Linux sandbox).
> >
> >
> This question doesn't really have anything to do with the message you
> included, AFAICT...
>
> The best way to do this is to use features built in to your OS. For
> most Linux-based installations, that'd be either iptables or ipchains.
>
> Some useful documents for iptables can be found here:
>
>
> http://www.netfilter.org/
>
> HTH,
>
> Geoff
>
>
>
> _______________________________________________
> Info-cvs mailing list
> address@hidden
> http://lists.gnu.org/mailman/listinfo/info-cvs
>