[Top][All Lists]

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

RE: Security, audits and pserver

From: Paul Sander
Subject: RE: Security, audits and pserver
Date: Mon, 16 Dec 2002 10:35:39 -0800

The advantage to chroot environments is that they can limit exposure to
things like rogue *info scripts that might reach beyond the CVS repository.
This is handy in the event that you store sensitive data on the machine
in addition to the repository.

The biggest argument in favor of user accounts is that the operating system
is much better at authenticating users, logging their activities, and
enforcing access controls than the CVS application is.  And if a user
manages to break out of the application somehow, he's not anonymous and you
know where to turn when things go bad.

So the answer to your question is yes, and no.

--- Forwarded mail from address@hidden

Are chrooted environments truly more secure than accessing pserver over an
ssh tunnel? 

--- End of forwarded message from address@hidden

reply via email to

[Prev in Thread] Current Thread [Next in Thread]