So, is this a good way (if there are still "bad things" in here, please
correct me...):
1. Make a user account on the domain (or local computer) for each CVS user
2. Use pserver protocol with impersonation
No ntserver protocol, because: (1) in that case the NT passwords must be
sent over the net and they are easily decrypted, and (2) we also need to
access the repository from Linux machines...
3.Use a passwd file to control who has access to the repository
So: each user on the domain has two passwords to remember: his domain
password and his CVS password.
And only the administrator can set the password, not the user himself...
In the passwd file this will look like:
user1:CVSPassword:user1
user2:CVSPassword:user2
4. use NTFS permissions to control access over files/directories (this can
only be done by the CVS administrator...)
Does this look OK now ?
If you still have remarks, please let me know.
Koen
"Tony Hoyle" <[EMAIL PROTECTED]> wrote in message
[EMAIL PROTECTED]">news:[EMAIL PROTECTED]...
> Koen wrote:
> Now, is it possible to set permissions for files/directories on the
> CVS user
> > name level instead of using the NT user names? Is this kept in CVS files
> > somehow or is the only security supported on the file system level
itself ?
>
> You can use the 'cvs chacl' and 'cvs lsacl' commands to support access
> control for cvs users - permissions are maintained per-directory/branch.
> It's not a common approach, though, as most people just use different
> NT users & use the NT file permissions.
>
> Tony
>
> _______________________________________________
> Cvsnt mailing list
> [EMAIL PROTECTED]
> http://www.cvsnt.org/cgi-bin/mailman/listinfo/cvsnt
_______________________________________________
Cvsnt mailing list
[EMAIL PROTECTED]
http://www.cvsnt.org/cgi-bin/mailman/listinfo/cvsnt
