I saw some posts on this in the archive, but the basic answer, using ssh tunnelling, does not work for me, for two reasons. One is personal perference: I don't want to pay money to buy F-Secure or whatever. Second is technological: my target host does not allow logins, so I cannot open an ssh session and then tunnel over that with cvs. With the help of sabi on EFNet's #macdev, I got another method working. Basically, I set up maccvs to go to a Linux box via rsh. Once there, it executes a program called "rshcvs" that then opens the cvs connection to the remote repostiory via ssh. It works pretty well for me. Is it less secure? Yes, so it depends on what I am using it for. For s00p3r s3kr1t stuff, I can't use it. Also, even though no secret information is being sent over the line (since the code is all going to a public repository, and no passwords are sent for rsh), the method is vulnerable to IP address spoofing or man-in-the-middle attacks. However, since both are nontrivial attacks, and in the remote chance that it does happen, we have backups and can fix it later, I don't worry about it much. So anyway, it works for me, and I cna provide details. But I was wondering if someone had a better method? -- Chris Nandor | [EMAIL PROTECTED] | http://pudge.net/ Andover.Net | [EMAIL PROTECTED] | http://slashcode.com/
