On 10 Jun 1999 13:55:52 -0400
Perry E Metzger <[EMAIL PROTECTED]> wrote:
> "William H. Geiger III" <[EMAIL PROTECTED]> writes:
>> Can this be set up so the ssh client only has access to the CVS
>> server and not the entire system?
> It could, but do you really trust cvs itself to be completely free
> of security holes and such? I don't. I'd suggest finding another
> way to do what you want instead of this.
I wouldn't trust CVS's pserver on any sort of secure machine, even
chroot'ed. A base assumption with pserver is that any arbitrary
user with CVS access can execute any arbitrary script on the system
as a non-priviledged user. All you need is one compromisable setuid
binary and you're toast.
We're using BitKeeper (betaware, see http://www.bitkeeper.com/) at
VA Research for Linux/Merced. Not a priviledged or setuid/setgid
binary in the whole package. The native transport is email, but it
will also use SSH if it finds it. Good stuff. Now if only we could
get SSH/PPP VPN's working under recent Linux/PPP versions.
--
J C Lawrence Internet: [EMAIL PROTECTED]
----------(*) Internet: [EMAIL PROTECTED]
...Honorary Member of Clan McFud -- Teamer's Avenging Monolith...
