Hi Noel,
On Mon, Jul 31 2000, Noel L Yap wrote:
> I've cc'd the mailing list 'cos part of my response may be important to others.
>
> The patches I've posted are incremental meaning that you'll have to apply each
> of the preceding ones before the one you really need. Of course, this means
> that you may get more than you wanted. You might want to manually apply the
> patches (probably in an ad hoc manner) so that you get only the things you want.
thank you for sending me your patches. It turned out that I had
already done the right changes but I had forgotten to apply it also on
the client side. Now everything is working fine :-) Thank you very
much again.
> If you've been following the mailing list, I've come to the decision that this
> patch is very BAD.
I don't think so ! I have followed the mailing list, but I could not
agree with the arguments against your patches.
> Conceivably, many client users may wind up with the same
> client username. This could be disastrous if this patch were used in such an
> environment.
Well, it may depend on the environment and what authentication method
you use with SSH. But without the patch all CVS logs contain the
"server-side" username which is not of much information.
In our case, we are using SSH and its RSA based authentication method.
It is based on public-key cryptography. That means if "many client
users may wind up with the same client username" they all must have
the identical public/private key pair for authentication which is
impossible !!!
> I plan to remove this patch once I have some time. A kludge to
> this problem may be to make the client hostname as part of the username that's
> logged by CVS. I haven't thought of the consequences of such a patch though (it
> may be more disastrous than the existing patch).
In our cases, your patch is exactly doing what we want :-))
Thank you very much for your help which I have appreciated very much.
Best Regards,
Norbert
--
Ceterum censeo | PGP encrypted mail preferred.
Redmondem delendam esse. | PGP Public Key at www.MPA-Garching.MPG.DE/~nog/
