info-cvs
[Top][All Lists]
Advanced

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: Problem with migrating Repository from Solaris to Linux


From: Mark D. Baushke
Subject: Re: Problem with migrating Repository from Solaris to Linux
Date: Tue, 07 Sep 2004 08:28:39 -0700

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

Joerg Reiners <address@hidden> writes:

> Karl Heinz Marbaise wrote:
> > Hi there,
> > 
> > [...]
> > 
> >>I have tried to move our repository from an old solaris machine
> >>to a new linux box but cvs is not working anymore. 
> >>I can access
> >>the repository when using cvs directly on the nfs mounted directory,
> >>but when I try to use server.my.home:/repos as CVSROOT I always
> >>get a "permission denied" error saying "cannot create_adm_p
> >>/tmp/cvs-serv2324/programm".
> > 
> > Under which permission does the CVS Server (pserver?) run?
> > 
> > Have you changed the directory and files permissions of the files
> > within the repository?
> > 
> > Kind Regards.
> > 
> 
> I do not use a pserver process. cvs uses rsh to connect to the server
> with the repository. The file permissions are the same as on the old
> server. Nothing was changed in the repository.

You will either need to setup a chrooted CVS server or force creation of
the public key file $HOME/.ssh/authorized_keys to use a command="cvs server"

There are documents out there to help you in your setup such as:

http://www.idealx.org/prj/idx-chrooted-ssh-cvs/dist/chrooted-ssh-cvs-server.html
http://www.netsys.com/library/papers/chrooted-ssh-cvs-server.txt

or you can write your own custom web-editing pages to take a user's SSH
public key and prepend 'command="cvs server"' to it like

command="cvs server" ssh-dss ...base64-encoded-key... address@hidden

and put it into the user's home directory for them.

In any case, you would need to have the shell be other than nologin.

If you do not have any commitinfo, verifymsg, loginfo trigger scripts to
ever run, you could make the shell be a restricted shell that only has a
cvs command in it.

        Good luck,
        -- Mark
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.2.3 (FreeBSD)

iD8DBQFBPdOn3x41pRYZE/gRAk7TAKDgV82xstM6FTAUDfZCcMDp2E8yeQCeMZiU
b+dB1TW/op7QkuyzSq759bo=
=qHLk
-----END PGP SIGNATURE-----




reply via email to

[Prev in Thread] Current Thread [Next in Thread]