[EMAIL PROTECTED] on 2000.05.15 18:25:28
>Eric Siegerman wrote:
>
>> The user needs an *account* on the server; they don't need to be
>> able to log into it.
>>
>>
>> Actually, you might not need to create a login for every user.
>> Just a single one, set up as above, should do. Give each user
>> their own key-pair, and put all their public keys in the cvs
>> account's authorized_keys -- all with `command="cvs server"'
>> options of course.
>
>Exactly.
>
>Trouble is, this last configuration allows multiple users to use
>the same account. That is usually considered a security No-No
>(or at least it was, before PCs admitted us to the La-La Land
>of insecurity, passwords saved with applications, etc.)
I hadn't caught this the first time. Not only is everyone using the same
account, but CVS has no way of knowing who you really are. I don't worry too
much about the former in our situation, but I do care about the latter.
Noel
This communication is for informational purposes only. It is not intended as
an offer or solicitation for the purchase or sale of any financial instrument
or as an official confirmation of any transaction. All market prices, data
and other information are not warranted as to completeness or accuracy and
are subject to change without notice. Any comments or statements made herein
do not necessarily reflect those of J.P. Morgan & Co. Incorporated, its
subsidiaries and affiliates.
