> Maybe I'm just missing something, but why wouldn't you just set up
> Kerberos and use the GSSAPI connection method to access the CVS server?
This gets you past the network security issues (almost)
and into the application security issues:
how do you know that CVS itself is secure?
If you run multiple projects through the same CVS server,
and they want to keep things private from each other,
or if not all files in the CVS repository have the same accessibility
(we've had posts within the last month from CVS admins who want
to make some files accessible only to admins, others to Joe Developers,
others to tech writers, etc.)
you have to prove that CVS itself has no bugs that will
break security.
To keep projects private from each other
you're wise to use separate repositories/servers
for each project.
Whereas, if each user runs a non-setuid CVS on a local filesystem,
the user can enforce whatever policies he wants using ACLs.
(If your filesystem has ACLs).
