CVS, SSH, secure, chroot etc

Andrew Reid andrew.reid at plug.cx
Mon May 26 11:39:13 CST 2003


On Fri, 2003-05-23 at 10:42, David Lloyd wrote:

> > See, this is where I don't see why you'd bother. All this achieves is
> > secure transmission of the CVS data. Why not just take the extra step
> > and use SSH alone for doing CVS? It's not that hard to setup -- I'd
> > argue that it's easier to setup than pserver.
> 
> I remember reading somewhere that "pservers" are dangerous things and
> likely to be a security hole regardless of SSH...and I think it was on
> this list.

Hmm -- there are several advisories on the 'net that refer to pserver.
I've always used SSH in the same way that SourceForge does.

   - andrew

-- 
| Andrew Reid [mailto:andrew.reid at plug.cx]
| Overworked and Underpaid Network Monkey
| C: +61-401-946-813  F: +61-8-8379-1093
| Finger andrew at keetoo.plug.cx for PGP Public Key

-- 
LinuxSA WWW: http://www.linuxsa.org.au/ IRC: #linuxsa on irc.freenode.net
To unsubscribe from the LinuxSA list:
  mail linuxsa-request at linuxsa.org.au with "unsubscribe" as the subject



More information about the linuxsa mailing list