From owner-freebsd-security  Mon Nov  5 20: 4:14 2001
Delivered-To: freebsd-security@freebsd.org
Received: from www.svzserv.kemerovo.su (www.svzserv.kemerovo.su [213.184.65.80])
	by hub.freebsd.org (Postfix) with ESMTP id 61D2837B418
	for <security@freebsd.org>; Mon,  5 Nov 2001 20:04:09 -0800 (PST)
Received: (from eugen@localhost)
	by www.svzserv.kemerovo.su (8.11.6/8.11.6) id fA643kC82430
	for security@freebsd.org; Tue, 6 Nov 2001 11:03:46 +0700 (KRAT)
	(envelope-from eugen)
Date: Tue, 6 Nov 2001 11:03:46 +0700
From: Eugene Grosbein <eugen@grosbein.pp.ru>
To: security@freebsd.org
Subject: Running secured local anoncvs server for FreeBSD CVS Repository
Message-ID: <20011106110346.A77269@svzserv.kemerovo.su>
Mime-Version: 1.0
Content-Type: text/plain; charset=us-ascii
Content-Disposition: inline
User-Agent: Mutt/1.2.5i
Sender: owner-freebsd-security@FreeBSD.ORG
Precedence: bulk
List-ID: <freebsd-security.FreeBSD.ORG>
List-Archive: <http://docs.freebsd.org/mail/> (Web Archive)
List-Help: <mailto:majordomo@FreeBSD.ORG?subject=help> (List Instructions)
List-Subscribe: <mailto:majordomo@FreeBSD.ORG?subject=subscribe%20freebsd-security>
List-Unsubscribe: <mailto:majordomo@FreeBSD.ORG?subject=unsubscribe%20freebsd-security>
X-Loop: FreeBSD.org

Hi!

I run local cvsup-mirror of FreeBSD CVS Repository. It runs just fine.
I would like to provide read-only anoncvs access to the Repo and wonder
how to make it secure. E.g. I do not want users to:

- make brute-force attacks to /etc/master.passwd
- touch the Repo in any way, no commits, no tags, no
  val-tags nor history nor any other file modifications.

Is it possible?

Eugene Grosbein

To Unsubscribe: send mail to majordomo@FreeBSD.org
with "unsubscribe freebsd-security" in the body of the message