Skip site navigation (1)Skip section navigation (2)
Date:      Tue, 28 Jan 2003 14:17:26 -0600
From:      "Brian Henning" <b1henning@hotmail.com>
To:        "freebsd" <freebsd-questions@FreeBSD.ORG>
Subject:   Fw: cvs
Message-ID:  <OE45ZStgLzhVOJwnzsL00000de1@hotmail.com>

next in thread | raw e-mail | index | archive | help



John,

 the only step i am not clear on is step 4. Where can i find the passwd file
 that i should use? I assume that you are talking about the shadowed
password
 file.

 Thanks for you input,

 Brian

>
> ----- Original Message -----
> From: "John Mills" <jmills@localhost.localdomain>
> To: "Brian Henning" <b1henning@hotmail.com>
> Cc: "freebsd" <freebsd-questions@FreeBSD.ORG>
> Sent: Tuesday, January 28, 2003 1:27 PM
> Subject: Re: cvs
>
>
> > Brian, all -
> >
> > It's been a while since I did this. It's a manual operation, and I've
> > forgotten any subtleties.
> >
> > On Tue, 28 Jan 2003, Brian Henning wrote:
> >
> > > I am setting up a cvs server on my bsd box. So far i have enabled
> pserver in
> > > my /etc/initd.conf file. I have added a user called 'cvsuser' i have
> created
> > > a repository in /home/cvsroot i have pointed my CVSROOT variable to
that
> > > cvsroot directory. when i enter the command
> > > cvs -d :pserver:cvsuser@localhost:/home/cvsroot login
> > > i can't get logged in because i don't have a password set in my passwd
> file.
> > > i created an empty one '/home/cvsroot/passwd' but, i don't know howto
> add
> > > users to it..
> >
> > In order to get started I did something like this:
> >
> > 1) I created a 'cvsuser' as you did, a real user with a real $HOME
> > directory.
> >
> > 2) I gave that user a 'dumb' password.
> >
> > 3) I set my pserver to use the same password authorization that the host
> > did (PAM/MD5 in this case).
> >
> > 4) I copied the system's password hash for that user into the right
place
> > in their line of the CVS 'passwd' file. (DON'T DO THIS FOR A REAL USER
> > WITH A SIGNIFICANT PASSWORD!!)
> >
> > 5) I was then able to 'cvs ... login' as 'cvsuser' using the 'dumb'
> > password.
> >
> > 6) I then gave all my real CVS users the same hash in their respective
> > lines in the CVS 'passwd' file, so they wouldn't compromise their
regular
> > passwords by using them for CVS access.
> >
> > 7) When I had it working I dropped those passwords back to NULL entries
by
> > deleting the hash strings, as our access control was independent of CVS
> > (and it had better be for you, too!).
> >
> > IIRC, even if you have a NULL password entry for that user, they have to
> > enter _something_ at the prompt. I had some 'turnkey' build scripts and
> > those used the dummy user's username as the password. It was accepted
even
> > though the $CVSROOT/CVSROOT/passwd entry was NULL.
> >
> > I found some examples either in the distribution version of the file, or
> > in the 'Cederqvist' document's description of 'Administrative Files'.
They
> > weren't exactly what I needed, but they got me started.
> >
> > If that doesn't help, I'll go poke around in the setup and see what I
> > _really_ did.
> >
> > DISCLAIMER: this was in RedHat Linux-7.1.
> >
> >  - John Mills
> >
>

To Unsubscribe: send mail to majordomo@FreeBSD.org
with "unsubscribe freebsd-questions" in the body of the message




Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?OE45ZStgLzhVOJwnzsL00000de1>