From owner-freebsd-current@FreeBSD.ORG  Wed Mar  1 21:25:42 2006
Return-Path: <owner-freebsd-current@FreeBSD.ORG>
X-Original-To: current@freebsd.org
Delivered-To: freebsd-current@FreeBSD.ORG
Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125])
	by hub.freebsd.org (Postfix) with ESMTP id 7843E16A437;
	Wed,  1 Mar 2006 21:25:42 +0000 (GMT)
	(envelope-from fullermd@over-yonder.net)
Received: from mail.localelinks.com (web.localelinks.com [64.39.75.54])
	by mx1.FreeBSD.org (Postfix) with ESMTP id 27AFA43D45;
	Wed,  1 Mar 2006 21:25:41 +0000 (GMT)
	(envelope-from fullermd@over-yonder.net)
Received: from draco.over-yonder.net
	(adsl-072-148-013-213.sip.jan.bellsouth.net [72.148.13.213])
	(using TLSv1 with cipher DHE-RSA-AES256-SHA (256/256 bits))
	(No client certificate requested)
	by mail.localelinks.com (Postfix) with ESMTP id F3EB94A;
	Wed,  1 Mar 2006 15:25:40 -0600 (CST)
Received: by draco.over-yonder.net (Postfix, from userid 100)
	id 39F7661C38; Wed,  1 Mar 2006 15:25:40 -0600 (CST)
Date: Wed, 1 Mar 2006 15:25:40 -0600
From: "Matthew D. Fuller" <fullermd@over-yonder.net>
To: Wesley Shields <wxs@csh.rit.edu>
Message-ID: <20060301212540.GN17589@over-yonder.net>
References: <20060301170306.GZ55746@elvis.mu.org>
	<4405F673.8060907@samsco.org> <44mzg9ucpm.fsf@be-well.ilk.org>
	<20060301211932.GA42815@csh.rit.edu>
Mime-Version: 1.0
Content-Type: text/plain; charset=us-ascii
Content-Disposition: inline
In-Reply-To: <20060301211932.GA42815@csh.rit.edu>
X-Editor: vi
X-OS: FreeBSD <http://www.freebsd.org/>
User-Agent: Mutt/1.5.11-fullermd.2
Cc: arch@freebsd.org, current@freebsd.org,
	Lowell Gilbert <freebsd-current-local@be-well.ilk.org>
Subject: Re: HEADS UP: Importing csup into base
X-BeenThere: freebsd-current@freebsd.org
X-Mailman-Version: 2.1.5
Precedence: list
List-Id: Discussions about the use of FreeBSD-current
	<freebsd-current.freebsd.org>
List-Unsubscribe: <http://lists.freebsd.org/mailman/listinfo/freebsd-current>, 
	<mailto:freebsd-current-request@freebsd.org?subject=unsubscribe>
List-Archive: <http://lists.freebsd.org/pipermail/freebsd-current>
List-Post: <mailto:freebsd-current@freebsd.org>
List-Help: <mailto:freebsd-current-request@freebsd.org?subject=help>
List-Subscribe: <http://lists.freebsd.org/mailman/listinfo/freebsd-current>,
	<mailto:freebsd-current-request@freebsd.org?subject=subscribe>
X-List-Received-Date: Wed, 01 Mar 2006 21:25:42 -0000

On Wed, Mar 01, 2006 at 04:19:32PM -0500 I heard the voice of
Wesley Shields, and lo! it spake thus:
> 
> I'm questioning (1) myself.  This just seems like a bad idea from a
> security perspective.

Well, it should be remember that CVSup is (at least conceptually) not
just "a tool for spreading CVS-held source around like fertilizer",
it's "a software package for distributing and updating collections of
files across a network" (per www.cvsup.org).  If you're using it to
sync files between two hosts you control, there are many good reasons
why you'd want to run commands (rather like you would with rdist).


-- 
Matthew Fuller     (MF4839)   |  fullermd@over-yonder.net
Systems/Network Administrator |  http://www.over-yonder.net/~fullermd/
           On the Internet, nobody can hear you scream.