RE: How 2 Secure the repository?

Greg A. Woods Mon, 11 Mar 2002 11:31:59 -0800

[ On Monday, March 11, 2002 at 13:42:30 (-0500), Vishal Jain wrote: ]
> Subject: RE: How 2 Secure the repository?
>
> CVS bin       :       setgid "cvs" binary, setting permission as user:cvsadmin


I would not do that if I were you.  CVS is a big hunk of code that was
not designed to run with set-ID enhanced privileges.  There are also
probably a dozen or more places for a trojan to be put in the way of an
authorised administrator.

-- 
                                                                Greg A. Woods

+1 416 218-0098;  <[EMAIL PROTECTED]>;  <[EMAIL PROTECTED]>;  <[EMAIL PROTECTED]>
Planix, Inc. <[EMAIL PROTECTED]>; VE3TCP; Secrets of the Weird <[EMAIL PROTECTED]>

_______________________________________________
Info-cvs mailing list
[EMAIL PROTECTED]
http://mail.gnu.org/mailman/listinfo/info-cvs

RE: How 2 Secure the repository?

Reply via email to