RE: Security, audits and pserver

info-cvs

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

RE: Security, audits and pserver

From:	Paul Sander
Subject:	RE: Security, audits and pserver
Date:	Mon, 16 Dec 2002 10:35:39 -0800

The advantage to chroot environments is that they can limit exposure to
things like rogue *info scripts that might reach beyond the CVS repository.
This is handy in the event that you store sensitive data on the machine
in addition to the repository.

The biggest argument in favor of user accounts is that the operating system
is much better at authenticating users, logging their activities, and
enforcing access controls than the CVS application is.  And if a user
manages to break out of the application somehow, he's not anonymous and you
know where to turn when things go bad.

So the answer to your question is yes, and no.

--- Forwarded mail from address@hidden

Are chrooted environments truly more secure than accessing pserver over an
ssh tunnel? 

--- End of forwarded message from address@hidden

[Prev in Thread]

Current Thread

[Next in Thread]

RE: Security, audits and pserver, (continued)
- Re: Security, audits and pserver, Phil R Lawrence, 2002/12/12
  - Re: Security, audits and pserver, Larry Jones, 2002/12/12
- RE: Security, audits and pserver, Neis, Mark, 2002/12/12
- RE: Security, audits and pserver, Douglas Finkle, 2002/12/13
- RE: Security, audits and pserver, Walter, Jan, 2002/12/16
  - Re: Security, audits and pserver, Larry Jones, 2002/12/16
  - RE: Security, audits and pserver, Paul Sander <=
    - Re: Security, audits and pserver, david, 2002/12/17
- RE: Security, audits and pserver, Walter, Jan, 2002/12/16
  - RE: Security, audits and pserver, Greg A. Woods, 2002/12/16

Prev by Date: Re: Vendor branches, imports and checkouts
Next by Date: RE: Security, audits and pserver
Previous by thread: Re: Security, audits and pserver
Next by thread: Re: Security, audits and pserver
Index(es):
- Date
- Thread