David Katz writes:
>
> I'm having a devil of a time logging into cvs using pserver.
Have you read "Trouble making a connection to a CVS server" in the
Cederqvist manual? (It looks like you have.)
> On Mandrake Linux (a flavor similar to Red
> Hat), the /etc/passwd file using shadowing, so cvs can't read the
> passwords directly from there.
As long as it's a reasonably-standard shadow mechanism and you have
inetd running CVS as root (which you say you do), it should be able to
read them.
> "cvs [login aborted]: recv() from server db.totalcreativeinc.com: EOF"
Your server isn't running CVS 1.10.6, is it? There's a fatal pserver
bug in 1.10.6 that causes this exact symptom. If so, upgrade to 1.10.8
from www.cyclic.com.
> I've seen some
> commentary on whether to actually add the passwd file to CVSROOT using
> cvs, or to not because it could be a security risk. I'd appreciate any
> feedback on that issue as well.
Since CVSROOT/passwd specifies the system user that CVS is to run as,
anyone who can modify it can become any user they want to. Maintaining
it with CVS makes it harder to control who can modify it.
-Larry Jones
It's no fun to play games with a poor sport. -- Calvin
