On Wed, Oct 08, 2003 at 10:59:37AM -0700, [EMAIL PROTECTED] wrote: > this ssh method requires that my co-developer has an account on the > system containing the repository. i don't mind that, since he's a > friend. > > but in general, someone who accesses cvs this way has system access. > not only can my co-developer do things like "cvs checkout" and "cvs > commit", but he can also ssh into the machine and work at a remote > shell. > > is there a way to give co-developers access to cvs WITHOUT giving them > system level access?
Sure. CVS-only users just need to be able to run "cvs server". If you set them up with a restricted shell that can only run this command, that should help to secure your CVS server. -- Rob Helmer _______________________________________________ Info-cvs mailing list [EMAIL PROTECTED] http://mail.gnu.org/mailman/listinfo/info-cvs
