[svlug] CVS SSH server security
Aleksandr Arbitman
arbitman at pacbell.net
Tue Mar 6 16:29:22 PST 2007
do not add untrusted users to CVS group and
set a sticky bit on repository directory for them:
$ chmod +t /foo (assuming /foo is your repository folder)
so it looks like this when you issue "ls -l" command
drwxrwxrwt 5 root cvs 543 May 29 09:41 foo
this way users won't delete or overwrite someone's else code.
Bill Ward <bill at wards.net> wrote: Sourceforge lets you have a "ssh" account that enables you to run CVS
commands, but not get a regular shell account. I have a need for this
behavior on a CVS server under our control. For example, I don't
want people to be able to delete files from the repository (outside of
what the "cvs rm" command does). Does anyone here know how this is
done?
--
Help bring back the San Jose Earthquakes - http://www.soccersiliconvalley.com/
_______________________________________________
svlug mailing list
svlug at lists.svlug.org
http://lists.svlug.org/lists/listinfo/svlug
-------------- next part --------------
An HTML attachment was scrubbed...
URL: http://kenny.linuxmafia.com/pipermail/svlug/attachments/20070306/d7de7be0/attachment.htm
More information about the Svlug
mailing list