> I understand how to secure CVS on a networked filesystem like AFS. > First, make sure that CVS has no set-user-id components. > Then, make sure that the ACLs for the repository are set correctly. > Then, manage Kerberos authentication. > This is straightforward, and does not require auditting CVS source code. > It relies on whatever security auditing or trust you have in the > networked filesystem. Maybe I'm just missing something, but why wouldn't you just set up Kerberos and use the GSSAPI connection method to access the CVS server? Regards, Brett Neumeier
- CVS security: networked filesystems like AFS, client ser... Andy Glew
- Re: CVS security: networked filesystems like AFS, c... Noel L Yap
- Re: CVS security: networked filesystems like AF... Andy Glew
- Re: CVS security: networked filesystems lik... Brett Neumeier
- Re: CVS security: networked filesystems lik... Gerhard Sittig
- Re: CVS security: networked filesystems like AF... Greg A. Woods
- RE: CVS security: networked filesystems like AFS, c... Fredrik Liljegren
- Re: CVS security: networked filesystems like AF... Russ Allbery
- Re: CVS security: networked filesystems lik... Andy Glew
- Re: CVS security: networked filesystems... Russ Allbery