> Malcolm Wallace wrote:
> > The anonymous CVS repository (and CVSweb) lags behind the "real"
> > repository by up to 24 hours. It is a snapshot copy, taken once
> > per day. [...]
>
> I just had a look at the setup at cvs.haskell.org, and it looks a bit
> paranoid IMHO: Why do we have to do this copying into the chroot jail
> at all? With a CVSROOT/readers file the anonymous access via pserver
> should be OK in /home/cvs/root itself. Or are there any
> vulnerabilities
> I'm not aware of?
I think it's "just" paranoia. Back in the days when anon CVS was first
invented (was it OpenBSD?) they used a chroot partition, and I think
we're just following suit. Nowadays pserver is probably more
secure/reliable than it used to be. Jeff Lewis <[EMAIL PROTECTED]> is
the man in charge of our CVS setup.
Cheers,
Simon
