Date: Tue, 6 Nov 2001 12:18:40 +0700 From: Eugene Grosbein <eugen@grosbein.pp.ru> To: David G Andersen <danderse@cs.utah.edu> Cc: security@FreeBSD.ORG Subject: Re: Running secured local anoncvs server for FreeBSD CVS Repository Message-ID: <20011106121840.B77269@svzserv.kemerovo.su> In-Reply-To: <200111060411.fA64BKh11658@faith.cs.utah.edu>; from danderse@cs.utah.edu on Mon, Nov 05, 2001 at 09:11:20PM -0700 References: <20011106110346.A77269@svzserv.kemerovo.su> <200111060411.fA64BKh11658@faith.cs.utah.edu>
next in thread | previous in thread | raw e-mail | index | archive | help
On Mon, Nov 05, 2001 at 09:11:20PM -0700, David G Andersen wrote: > See 'anoncvssh', from the OpenBSD project: > http://openbsd.sunsite.ualberta.ca/papers/anoncvs-paper.ps > Then grab the distribution: > http://www.openbsd.org/anoncvs.shar > > Then follow the instructions in the README. Since this isn't > a real CVS tree that you're granting access to (i.e. not one > that you're making commits to yourself), the setup is really > quite straightforward. Works well, is a CPU and disk bandwidth/seek > hog, but it's super convenient for local access. > (These are features of using CVS instead of CVSup, NOT features > of anoncvssh. anoncvssh just gives you a more secure way of > doing the ssh). > > If you're super paranoid, you can mount large parts of the > CVS repository read-only. It seems anoncvssh need OpenBSD's cvs distribution and modifications of some files inside the Repo that is what I would rather avoid to do. Is it safe to hack CVSROOT/*? And if I'll want to provide public access once, will I be allowed to limit using of compression? Eugene Grosbein To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-security" in the body of the message
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?20011106121840.B77269>