[Top][All Lists]

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: security question

From: Frederic Brehm
Subject: Re: security question
Date: Thu, 12 Dec 2002 11:23:56 -0500

At 10:51 AM 12/12/2002, Phil R Lawrence wrote:
Now, about security. We would be a multi-client shop, so I need SSH to encrypt sign-on info. Also, to make auditors very happy, we need to grant and deny write security to various projects in the repository.

We are a multi-client shop, too. We use a combination of group membership explained in and completely separate repository roots. A loginfo script runs to insure that permissions are correct after every commit.

Every commercial client gets their very own separate repository. Government unclassified clients may or may not share modules within a repository depending on the nature of the projects. Our own proprietary software has its own set of repositories.

We use multiple repositories to make it easier to audit where things came from. It's also easier to archive all of the software that goes with a single client when all of the software is under a CVSROOT unique to that client.


Frederic W. Brehm, Sarnoff Corporation,

reply via email to

[Prev in Thread] Current Thread [Next in Thread]