Re: CVSROOT must be an absolute pathname problem

Larry Jones wrote: Mike Ayers writes: I do not think it is possible to use WinCVS and Cygwin compiled CVS on the same sandbox. Cygwin CVS expects ALL files to be in Unix mode. While WinCVS can check out sandbox files with Unix line endings, it should still expect the CVS/* files to use Wind

Security setup

Here's a bit of a challenge for the list. We need to set up a CVS repository on a Linux server such that the users can't modify the files, except through proper CVS operations. The catch? They are currently permitted to log into the server. Is there a way to seal off the repository withou

RE: i could not connect the cvs pserver from cvs client on win32

-Original Message- From: Shishir Singhai [mailto:[EMAIL PROTECTED]] Sent: Tuesday, December 17, 2002 2:03 AM To: [EMAIL PROTECTED] Subject: RE: i could not connect the cvs pserver from cvs client on win32 Hi Have u setup password file and on which OS u run pserver. regards Shishir Sin

Re: Security setup

At 02:32 PM12/17/2002, Mike Ayers wrote: Here's a bit of a challenge for the list. We need to set up a CVS repository on a Linux server The cvs user id and group id need to be different from all other login users. And set permissions for repository such that the cvs user and group o

a list of changed files

Hello, could you tell me how could I obtain a list of all files which were changed during a certain period limited by revisions/dates? These files should be only from a specified module (including theirs path from $CVSROOT). Is it possible to do it without checkout? -- Best regards, Dusan Juhas

Problem: CVS RPM package relocation incomplete

I tried to make a RPM package from the CVS 1.11.2 sources and was mostly successfull without problems. However playing around a bit I found that it is not fully relocatable, as the paths used in the %post and %preun install time scripts are fixed to the location where they where at *build* time (o

Security options :-(

Satya Prasad DV wrote: At 02:32 PM12/17/2002, Mike Ayers wrote: >> Here's a bit of a challenge for the list. We need to set up >> a CVS repository on a Linux server such that the users can't >> modify the files, except through proper CVS operations. The >> catch? They are currently permitted

RE: Security options :-(

> > The cvs user id and group id need to be different from all > > other login users. And set permissions for repository such > > that the cvs user and group only are given write > > permissions. This should suffice > > And then what? Use pserver to map the existing user ids to the cvs id? > > I

Re: Security options :-(

Zieg, Mark wrote: Phil R Lawrence wrote: I have been trying to figure out a secure way to set this thing up, but each way seems to have big drawbacks. Method 1.5 description: - users SSH into newly-created accounts that are different from their existing accounts (cvsphil, etc) -

Solaris install help?

Anybody out there have experience with installing CVS on Solaris? I've inherited the task on getting source control on our development server and I am a newbie with installing anything on Solaris. TIA!     Bob ImperialSoftware Development Team Schoollink, Inc.910.223.2116 x 108 http://www.sc

RE: Security options :-(

> cvsphil would still have rights to maliciously modify the ,v files > though, right? i.e., he could modify the history, etc. He would have the *rights* to, yes, but provided that cvsphil was not allowed to log into the system directly, he would not have an *opportunity* to. I haven't done this

Re: Security options :-(

Zieg, Mark wrote: I haven't done this myself in awhile, but you can configure a "genuine login account" -- cvsphil, in this case -- who can connect via ssh, but through no other method. That is, cvsphil can't login from the console, from telnet, rlogin, etc. I think this is mainly done by setti

Where is diff getting its path?

My Environment…     Version: WinCvs 1.3.10.1 Beta 10 (Build 1)   Windows XP Pro   CVSROOT=:local:/cygdrive/c/cygwin/home/Mark/src/master   CYGWIN=title glob   Cygwin Version: 1.3.17-1   ActiveTcl 8.4.1.0   My Problem…   Python 2.2.2 (#37, Oct 14 2002, 17:02:34) [MSC 32 bit (

Re: Security options :-(

Phil R Lawrence wrote: > > Satya Prasad DV wrote: > > > > At 02:32 PM12/17/2002, Mike Ayers wrote: > > > >> Here's a bit of a challenge for the list. We need to set up > >> a CVS repository on a Linux server such that the users can't > >> modify the files, except through proper CVS operations.

Re: i could not connect the cvs pserver from cvs client on win32

=?gb2312?q?=C1=A2=C0=BC=20=B9=C8?= writes: > > i have setup a cvs server,then i try connect the > server from a win32 machine.but failed.the error > message is "[login aborted]:reading from > server:connection reset by peer " or "[login > aborted]:end of file from server,consult above message >

Re: Where is diff getting its path?

Mark Scoville writes: > > MIME-Version: 1.0 > Content-Type: multipart/mixed; boundary="===82987388676391016==" Please do not send MIME and/or HTML encrypted messsages to the list. Plain text only, PLEASE! > Specifically the path e:/src/... I do not know where the e: is coming > from.

Re: Solaris install help?

> Bob Imperial wrote: please skip the HTML on a mailing list, mail is for raw text, and many of the people who can answer your question do not use HTML mail readers. > > Anybody out there have experience with installing CVS on Solaris? I've > inherited the task on getting source control on our dev

Re: Security, audits and pserver

> The advantage to chroot environments is that they can limit exposure to > things like rogue *info scripts that might reach beyond the CVS repository. > This is handy in the event that you store sensitive data on the machine > in addition to the repository. > The repository is likely to be one of

Re: Security setup

Mike Ayers writes: > > Here's a bit of a challenge for the list. We need to set up a CVS > repository on a Linux server such that the users can't modify the > files, except through proper CVS operations. The catch? They are > currently permitted to log into the server. Is there a way

Re: a list of changed files

Dusan Juhas writes: > > could you tell me how could I obtain a list of all files which were > changed during a certain period limited by revisions/dates? > These files should be only from a specified module (including theirs path > from $CVSROOT). > > Is it possible to do it without checkout? Yo

RE: Security options :-(

> > That is, cvsphil can't login from the console, from telnet, > > rlogin, etc. I think this is mainly done by setting his login shell to > > "/sbin/nologin" or the equivalent. > > You'll also need to configure cvsphil such that he can only log on with > a particular keypair. Otherwise, what sto

Re: Security setup

Phil R Lawrence writes: > > Perhaps I'm naive, but the recent posts describing local accounts (e.g. > cvsphil) with no shell and ssh access to only the cvs command sound > promising. > > Do you see anything specifically flawed with this approach? Once you're connected to a pserver, it's a fair

Re: Empty val-tags file

Fabian Cenedese writes: > > I know that cvs uses forward slashes but it wasn't a problem to use backward > so I stuck with that. But it didn't change anything anyway. As I've noted before, backward slashes *usually* work, but there are cases where they don't, and the resulting errors can be quite

RE: Security setup

Larry Jones writes: > Mike Ayers writes: > > > > Here's a bit of a challenge for the list. We need to > set up a CVS > > repository on a Linux server such that the users can't modify the > > files, except through proper CVS operations. The catch? They are > > currently permitted to log i

Weird problem, not urgent, just curious

When I do a 'cvs co -D "Dec 06 2002" myproject' some files get tossed in that were actually removed from cvs in October. They dont appear in a normal 'cvs co myproject' (obviously the directories do unless I use the prune option). Doing a 'cvs log' command on these files shows them as having been d

Re: Security setup

Larry Jones wrote: ...as I've said many times before, CVS was > designed to facilitate cooperative work, it > was *not* designed to enforce security in > any way, shape, or form. Any attempt to > make it do so is doomed Perhaps I'm naive, but the recent posts describing local accounts (e.g. cv

Re: Security setup

Larry Jones wrote: Phil R Lawrence writes: Perhaps I'm naive, but the recent posts describing local accounts (e.g. cvsphil) with no shell and ssh access to only the cvs command sound promising. Do you see anything specifically flawed with this approach? Once you're connected to a pserver, it

RE: Security options :-(

> > > That is, cvsphil can't login from the console, from telnet, > > > rlogin, etc. I think this is mainly done by setting his > login shell to > > > "/sbin/nologin" or the equivalent. > > > > You'll also need to configure cvsphil such that he can only > log on with > > a particular keypair. O

Re: Security setup

Phil R Lawrence writes: > > Larry Jones wrote: > > > > Once you're connected to a pserver, it's a fairly simple process to get > > it to execute arbitrary commands for you; giving someone pserver access > > is equivalent to giving them shell access. > > Right... so this approach does not use ps

RE: Where is diff getting its path?

That was the problem. By updating it to :local:/cygdrive/c/cygwin/home/Mark/src/master that problem goes away. However, WinCvs now complains thusly: cvs [diff aborted]: /cygdrive/c/cygwin/home/Mark/src/master/CVSROOT: No such file or directory I have tried setting the "Checkout text files with th

Re: Weird problem, not urgent, just curious

Walter, Jan writes: > > When I do a 'cvs co -D "Dec 06 2002" myproject' some files get tossed in > that were actually removed from cvs in October. They dont appear in a normal > 'cvs co myproject' (obviously the directories do unless I use the prune > option). Doing a 'cvs log' command on these fi

RE: Weird problem, not urgent, just curious

Larry Jones writes: > > Walter, Jan writes: > > > > When I do a 'cvs co -D "Dec 06 2002" myproject' some files > get tossed > > in that were actually removed from cvs in October. They > dont appear in > > a normal 'cvs co myproject' (obviously the directories do > unless I use > > the prune

Re: CVSROOT must be an absolute pathname problem

Mike Ayers writes: > > You are thinking of text mode mounts. That has been mentioned a few > times here, as have a few other prospects for cooperative behavior, > but I have never seen a report of anyone successfully configuring a > system in which Cygwin CVS and a Windows style CVS were

Re: Security setup

Walter, Jan writes: > > I think we need to differentiate between "really bullet-proof security" and > "reasonable security" - after all, security is also there to protect users > from themselves, with no malicious intent required. I would also fathom that > this is the cause of most data loss. I

RE: Where is diff getting its path?

Good point. Initially I could only get WinCvs to work. I checked in several files, and now that I have the CLI working, I would like to commit changes that I have recently made. However, the LF problem haunts me. If I do a CLI diff on the file now, every single line is considered different. I think

RE: Security setup

Larry Jones writes: > Walter, Jan writes: > > > > I think we need to differentiate between "really bullet-proof > > security" and "reasonable security" - after all, security is also > > there to protect users from themselves, with no malicious intent > > required. I would also fathom that this

Re: Empty val-tags file

Although you switched to forward slashes in the command, you'll not that your root still contains backslashes. Is n: really a local drive, or is it some kind of network share? If it's a network share, then the problem is almost certainly some kind of bug or incompatibility in the network filesys

Re: Where is diff getting its path?

Mark Scoville writes: > > I have tried setting the "Checkout text files with the Unix LF (0xa)" both > ways and removing and rechecking out the directory on the command line > (using cvs version 1.11.2) and the error remains. Someone has recommended > going to another windows-based cvs client. Ano

Re: Weird problem, not urgent, just curious

Walter, Jan writes: > > Larry Jones writes: > > > > Could you post an example log? It sounds like the files have > > been partially resurrected -- they're no longer dead, but > > they're still living in the Attic. > > Yep, sure looks that way to me too. The thing is, why dont these files come

RE: Weird problem, not urgent, just curious

> I think you mean CVS 1.11.1p1 and 1.11.2 -- there is no 1.12 yet. Larry, any idea when you'll roll a new release? ___ Info-cvs mailing list [EMAIL PROTECTED] http://mail.gnu.org/mailman/listinfo/info-cvs

Re: Weird problem, not urgent, just curious

Douglas Finkle writes: > > Larry, any idea when you'll roll a new release? "Watch therefore, for you know neither the day nor the hour." Since I'm not the one who makes the releases, I can't say. But I expect it in the not-too-distant future. -Larry Jones This game lends itself to certain ab

RE: Redirect Swap Space?

Hi, At the risk of offending anybody, I am reposting this email. Any reply would be useful. I've looked through existing documentation and archives but can't find any information about having CVS use someplace other than /tmp for swap space. 1. Is this possible? 2. If yes, and I've missed the d

Security options :-(

Phil R Lawrence writes: > >> Here's a bit of a challenge for the list. We need to set up > >> a CVS repository on a Linux server such that the users can't > >> modify the files, except through proper CVS operations. The > >> catch? They are currently permitted to log into the server. >

RE: Redirect Swap Space?

In regard to: RE: Redirect Swap Space?, Lisa M. Doucette said (at 2:44pm on...: >I've looked through existing documentation and archives but can't find any >information about having CVS use someplace other than /tmp for swap space. The "standard" way for an application to do this is to look for t

Re: Redirect Swap Space?

Lisa M. Doucette writes: > > I've looked through existing documentation and archives but can't find any > information about having CVS use someplace other than /tmp for swap space. -Larry Jones Good gravy, whose side are you on?! -

RE: Redirect Swap Space?

Thank you very much. I was looking at http://www.cvshome.org/docs/manual/cvs_2.html#SEC27 referencing the use of swap space. Couldn't see how to change its location. Your link got me going in the right direction. Much appreciated, Lisa -Original Message- From: [EMAIL PROTECTED] [mai

Re: Security options :-(

[ On Tuesday, December 17, 2002 at 08:44:26 (-0500), Phil R Lawrence wrote: ] > Subject: Security options :-( > > Method 1 >description: >- users SSH into existing accounts. >- repository has group permissions that allow users to > check in and out, etc. > >drawback: >- us

RE: Security setup

[ On Tuesday, December 17, 2002 at 17:33:09 (+0100), Walter, Jan wrote: ] > Subject: RE: Security setup > > I think we need to differentiate between "really bullet-proof security" and > "reasonable security" No, that's not right at all. What people who are concerned about these issues really MUS

Re: Security options :-(

[ On Tuesday, December 17, 2002 at 19:31:39 (+), Keith Refson wrote: ] > Subject: Security options :-( > > > Method 3: >description: >- users SSH into a single existing account. You've just re-created half of the issues with CVSpserver. I.e. you still have no way to achieve sufficie

Re: Redirect Swap Space?

Lisa M. Doucette writes: > > I was looking at http://www.cvshome.org/docs/manual/cvs_2.html#SEC27 > referencing the use of swap space. Couldn't see how to change its location. > Your link got me going in the right direction. The problem seems to be that you're confounding swap space with tempor

Re: ACLs and CVS

--- Eric Vaughan <[EMAIL PROTECTED]> wrote: > Noel, > > While surfing the web for information about a > project I am working on, I came > across a message list that included a conversation > back in May 2002 which sort > of corresponds to what I am trying to do. I know you > also mentioned a scr

Re: Security setup

--- Mike Ayers <[EMAIL PROTECTED]> wrote: > > Here's a bit of a challenge for the list. We need > to set up a CVS > repository on a Linux server such that the users > can't modify the > files, except through proper CVS operations. The > catch? They are > currently permitted to log into

using cvs2cl xml output to extend cvs functionality

hi everyone, just thought i'd let people know, i'm doing some work on a definitive solution to the whole "cvs doesn't handle rolling back commits easily", "cvs can't tag files with the same log message", etc. problem. here's the idea: step 1) cvs2cl --xml generates XML output step 2) XSLT styles

Re: CVSROOT must be an absolute pathname problem

Larry Jones wrote: I don't think so -- I'm talking about when you install Cygwin stuff, on the "Select Root Install Directory" screen, there's a "Default Text File Type" check-box that allows you to select "DOS" or "Unix". Provided you select "DOS", the Cygwin cvs interoperates just fine with Wi

Re: Security setup

Larry Jones wrote: Once you're connected to a pserver, it's a fairly simple process to get it to execute arbitrary commands for you; giving someone pserver access is equivalent to giving them shell access. s/pserver/server/g The above applies to *any* kind of client/server mode, not just pser

Re: Security setup

Larry Jones wrote: Rewrite CVS? Seriously, as I've said many times before, CVS was designed to facilitate cooperative work, it was *not* designed to enforce security in any way, shape, or form. Any attempt to make it do so is doomed to fail. I'm not quite sure if this changes anything, but I

Re: Where is diff getting its path?

Mark Scoville wrote: Good point. Initially I could only get WinCvs to work. I checked in several files, and now that I have the CLI working, I would like to commit changes that I have recently made. However, the LF problem haunts me. If I do a CLI diff on the file now, every single line is conside