[ On Monday, January 19, 2004 at 15:43:35 (-0800), Mark wrote: ]
Subject: Re: what's to stop a developer from nuking the repository?
have unix command line users use :pserver:
That's really Really REALLY _B_A_D_ advice
There is absolutely _NO_ accountabilty or any other form of security
Tirsdag den 20. januar 2004 09:33 skrev Greg A. Woods:
[ On Monday, January 19, 2004 at 15:43:35 (-0800), Mark wrote: ]
Subject: Re: what's to stop a developer from nuking the repository?
have unix command line users use :pserver:
That's really Really REALLY _B_A_D_ advice
There is
Hello,
this may be a newbie Q, so I apologize, but my reading of the
Cederqvist did not help me...
I got a modified copy of my source back.
Now I want to replace me head revision with this code.
As I had troubles understanding versioning, my current code is in the
branch VER_1-bt. I have
At 04:15 AM 1/20/2004, Andy Jones wrote:
am I right in thinking that Greg's opinion does not reflect the majority
view?
No.
And besides, Greg is one of the resident experts on CVS. Listen to him.
Fred
___
Frederic W. Brehm, Sarnoff
Andy Jones wrote:
Tirsdag den 20. januar 2004 09:33 skrev Greg A. Woods:
[ On Monday, January 19, 2004 at 15:43:35 (-0800), Mark wrote: ]
Subject: Re: what's to stop a developer from nuking the repository?
have unix command line users use :pserver:
That's really Really REALLY _B_A_D_
Hi, I am not sure if this is the appropriate forum to post this message,
and, if it is not, hopefully someone can point me in the right direction,
I have been trying to find the generic users mailing list for CVS
Anyhow, to my question. I am attempting to use CVS with system
At 04:15 AM 1/20/2004, Andy Jones wrote:
am I right in thinking that Greg's opinion does not reflect the majority view?
No.
And besides, Greg is one of the resident experts on CVS. Listen to him.
I didn't say that his point of view was not valid.
I didn't say that he was wrong.
Please do not
Dave Morrow wrote:
Hi, I am not sure if this is the appropriate forum to post this message,
and, if it is not, hopefully someone can point me in the right direction,
I have been trying to find the generic users mailing list for CVS
Anyhow, to my question. I am attempting to use CVS with system
Andy Jones [mailto:[EMAIL PROTECTED] wrote:
At 04:15 AM 1/20/2004, Andy Jones wrote:
am I right in thinking that Greg's opinion does not reflect
the majority view?
It seems to me that the more one learns about computer security, the more
one tends to agree with Greg on this issue.
No.
And
[EMAIL PROTECTED] wrote:
Please forgive me if I am mistaken, and in any case I certainly don't want
to start a flame war, but am I right in thinking that Greg's opinion does
not reflect the majority view?
I can't speak for the majority, but I pretty much agree with Greg.
Quibble time:
[EMAIL PROTECTED] writes:
Quibble time: *if* you run cvs on a network you're sure is secure
and everybody on it can be absolutely trusted (to the point where you'd
be perfectly comfortable giving the root password to anybody who had an
actual need for it), pserver is usable. It serves to
On Tue, Jan 20, 2004 at 10:38:55AM -0500, Scott Moynes wrote:
Dave Morrow wrote:
Hi, I am not sure if this is the appropriate forum to post this message,
and, if it is not, hopefully someone can point me in the right direction,
I have been trying to find the generic users mailing list for CVS
Fabian Cenedese [mailto:[EMAIL PROTECTED] wrote:
Is it possible with .cvsignore/CVSIGNORE/cvswrapper to ignore
a directory?
Yes, just put the directory name in a .cvsignore file, in the parent
directory of the directory you want to ignore.
And as other variant: Can I make a rule for files
[EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] wrote:
*if* you run cvs on a network you're sure is secure
and everybody on it can be absolutely trusted (to the point
where you'd
be perfectly comfortable giving the root password to anybody
who had an
actual need for it), pserver is usable.
On Tue, 20 Jan 2004 11:03:38 -0500 (EST), Larry Jones
[EMAIL PROTECTED] wrote:
[EMAIL PROTECTED] writes:
Quibble time: *if* you run cvs on a network you're sure is secure
and everybody on it can be absolutely trusted (to the point where you'd
be perfectly comfortable giving the root password to
Been there done that. All the manual says it requires is pam_unix.so, I
have added lines to include winbind
My /etc/pam.d/cvs
auth required /lib/security/$ISA/pam_unix.so
accountrequired /lib/security/$ISA/pam_unix.so
auth required /lib/security/pam_winbind.so
Title: Re: what's to stop a developer from nuking the repository?
You should be making this choice (pserver or not) based on what security you want/need. Realistically this is going to be somewhere between perfection and better_than_I_had_already. Lets face it if you were using a shared
hacking the CVS server with an axe, then setting fire to the whole
building?
You see, I'm evaluating the advantages and disadvantages of various
version control systems, so I'd like to know how secure CVS is.
:)
___
Info-cvs mailing list
[EMAIL
[ On Tuesday, January 20, 2004 at 10:06:32 (+0100), Claus Henriksen wrote: ]
Subject: Re: what's to stop a developer from nuking the repository?
Has anybody made a long wishlist of things to be changed in pserver?
There is only one thing that can be changed: the PSERVER code should be
[ On Tuesday, January 20, 2004 at 11:03:38 (-0500), Larry Jones wrote: ]
Subject: Re: what's to stop a developer from nuking the repository?
I think that's still overstating the case. If you run CVS on a network
where you can trust people enough that you're confortable running
telnet or
[ On Tuesday, January 20, 2004 at 10:58:32 (-0500), Mike Echlin wrote: ]
Subject: Re: what's to stop a developer from nuking the repository?
90% of security risks are people inside your firewall.
Well, yes, though it depends on your threat models and exactly what
you're doing and how you're
I need to install CVS on an NT box. According to the FAQ page on
cvshome.com the NT version of the CVS server is available at
http://www.cvsnt.org/ .
I have a few questions and I hope someone can help me answer them.
1) I have worked with Apache and all versions of the Apache can be obtrained
Hello,
Can somebody tell me how to selectively give rights to a certain
set of users, the rights to branch etc.
Thanks
Puru
___
Info-cvs mailing list
[EMAIL PROTECTED]
http://mail.gnu.org/mailman/listinfo/info-cvs
[ On Tuesday, January 20, 2004 at 11:03:38 (-0500), Larry Jones wrote: ]
Subject: Re: what's to stop a developer from nuking the repository?
I think that's still overstating the case. If you run CVS on a network
where you can trust people enough that you're confortable running
telnet
Hi Jim, all
thanks for the answer so far, hope I am not getting on everybodys
nerves here...
First, are you absolutely certain that you do *not* want to merge this
file?
Copying a file from a branch to a trunk is an unusual action.
I am not completely sure, but this is what happened: Not
On Tue, 20 Jan 2004 14:08:45 -0500 (EST), Greg A. Woods [EMAIL PROTECTED]
wrote:
[ On Tuesday, January 20, 2004 at 11:03:38 (-0500), Larry Jones wrote: ]
Subject: Re: what's to stop a developer from nuking the repository?
I think that's still overstating the case. If you run CVS on a network
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
Sam Talebbeik [EMAIL PROTECTED] writes:
I need to install CVS on an NT box. According to the FAQ page on
cvshome.com the NT version of the CVS server is available at
http://www.cvsnt.org/ .
I have a few questions and I hope someone can help me
[ On Tuesday, January 20, 2004 at 14:18:53 (-0500), Larry Jones wrote: ]
Subject: Re: what's to stop a developer from nuking the repository?
Greg A. Woods writes:
Telnet and rlogin and similar still provide on heck of a lot more
accountability (over a trusted network) than pserver could
28 matches
Mail list logo