[ On Thursday, July 20, 2000 at 18:35:57 (EDT), [EMAIL PROTECTED] wrote: ]
> Subject: CVS security
>
> I'm trying to decide between SSH and Kerberos. The developers like SSH, but
> our security team votes for Kerberos. I wanted to know if anyone could
> answer a couple of questions I have regarding CVS's interaction with them.
Unless you have a very carefully designed and implemented Kerberos
infrastructure already in place it's *HIGHLY* unlikely to be even as
``secure'' as SSH.
> Someone up my food chain has a bee in his bonnet about using SecurID or
> digital certificates of some kind. Has anyone looked into expanding CVS's
> security model to include such interfaces, or is it recomended to write your
> own and use CVS_RSH?
SSH can do SecurID:
--with-securid[=PATH] Enable support for Security Dynamics SecurID card.
> I've also heard about something called "SourceForge". CVS repositories on
> the Internet? Yow. Are there corporations out there that do that with their
> Crown Jewels, or is it mainly used by Open Source projects? I think I would
> swoon passing over the keys to our CVS server... ;)
I doubt it. SourceForge is probably mostly just for open source. Check
it yourself at www.sourceforge.net
--
Greg A. Woods
+1 416 218-0098 VE3TCP <[EMAIL PROTECTED]> <robohack!woods>
Planix, Inc. <[EMAIL PROTECTED]>; Secrets of the Weird <[EMAIL PROTECTED]>