Michael,
I got a lot of feedback about this point. I think the password file should
*not* be committed into the CVS repository. Someone recommended I upgrade my
CVS version from the version that came with linux (1.10.6) to the latest
version (1.10.8) and that solved the problem. Whew!
Thanks for your help.
-Dave.
Michael Bletzinger wrote:
> David Katz wrote:
> >
> > I'm having a devil of a time logging into cvs using pserver. I know
> > cvs is working properly. I can use it from the command line to check
> > things in and out (just not log in). I think the problem has to do
> > with the passwd setup. On Mandrake Linux (a flavor similar to Red
> > Hat), the /etc/passwd file using shadowing, so cvs can't read the
> > passwords directly from there.
> >
> > Okay, so we create a CVSROOT/passwd file, right? Sure. I created the
> > file and I know cvs is reading it because if I try to log in with a
> > fake user name, it tells me:
> >
> > "no such user cvs in CVSROOT/passwd"
> >
> > We're making progress. But I've tried so many ways of encrypting a
> > password combo and putting it into the passwd file (with salt, without
> > salt, using cryptpw-which someone posted on this board, using htpasswd)
> > and I always get the same error:
> >
> > "cvs [login aborted]: recv() from server db.totalcreativeinc.com: EOF"
> >
> > Aaaargh!
> >
> > If I try from WinCVS, I get this error:
> >
> > "cvs [login aborted]: authorization failed: server
> > db.totalcreativeinc.com rejected access"
> >
> > I can't help but think that there's some secret way to populate that
> > CVSROOT/passwd file that's going work. Please help! I've seen some
> > commentary on whether to actually add the passwd file to CVSROOT using
> > cvs, or to not because it could be a security risk. I'd appreciate any
> > feedback on that issue as well.
> >
> > Here is my environment-
> >
> > $CVSROOT
> > /usr/local/cvsroot
> >
> > $CVSROOT permissions
> > user: cvs_root
> > group: tci_sf
> >
> > /etc/inetd.conf
> > cvspserver stream tcp nowait root /usr/bin/cvs cvs
> > --allow-root=/usr/local/cvsroot pserver
> >
> > /etc/services
> > cvspserver 2401/tcp # CVS client/server
> > operations
> > # Keep only one version of cvspserver running (tcp version
> > #cvspserver 2401/udp # CVS client/server
> > operations
> >
> > telnet to db.totalcreativeinc.com:2401
> > Connected to db.totalcreativeinc.com.
> > Escape character is '^]'.
> >
> > cvs [pserver aborted]: bad auth protocol start:
> >
> > Connection closed by foreign host.
> >
> > CVSROOT/config
> > SystemAuth=no
>
> >
> > CVSROOT/passwd
>
> Your passwd file is located in /usr/local/cvsroot/CVSROOT right? Note
> that the passwd file is not a ",v" file. It is not committed.
>
> > cvs_root:$1$acZgejPN$G9TuTzvI49woVf9.zJ3YM0 (<-- currently with salt)
> >
> > login command
> > cvs -d :pserver:[EMAIL PROTECTED]:/usr/local/cvsroot
> > login
> >
> > login error
> > (Logging in to [EMAIL PROTECTED])
> > CVS password:
> > cvs [login aborted]: recv() from server db.totalcreativeinc.com: EOF
> >
> > Thanks in advance,
> >
> > David Katz
> > [EMAIL PROTECTED]
> > Chief Technical Officer
> > Total Creative Inc.
> > 415-421-9200 x.255 (v)
> > 415-421-9222 (f)
> > http://www.totalcreativeinc.com
--
David Katz
Chief Technical Officer
Total Creative Inc.
415-421-9200 x.255 (v)
415-421-9222 (f)
http://www.totalcreativeinc.com
