Derek Robert Price <[EMAIL PROTECTED]> writes: >~From the NEWS file: > >| Changes from 1.11.6 to 1.11.7: > > >. . . > >| * The global '-l' option, which suppressed history logging, has been >| removed from both client and server. > >I suppose it could have noted that this was for security reasons. >Only the administrator is deemed to be allowed to decide what >commands to log or not to log.
I fail to see how this is any improvement in security in the case where you're accessing a local filesystem; if you have write access to the CVS repository then you can change what's in the log, and if you have read access to the repository then you can get the sources without logging. It does make some sense in the client/server case, although I'd have preferred to see -l made a configurable option for the server. -- Ed Avis <[EMAIL PROTECTED]> _______________________________________________ Info-cvs mailing list [EMAIL PROTECTED] http://mail.gnu.org/mailman/listinfo/info-cvs
