info-cvs
[Top][All Lists]
Advanced

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: Silly question about CVS and permissions


From: Todd Denniston
Subject: Re: Silly question about CVS and permissions
Date: Mon, 18 Apr 2005 17:55:46 -0500

"Michaelis, Daniel" wrote:
> 
> Todd,
> 
> Thanks for the answers.
> 
> Regarding your comments, my intent is less to provide a "secure" environment
> (we don't expose cvs outside the internal network), and I'm not terribly
> worried about malicious destruction of data; I'm much more concerned with
> the occasional "fat-fingered" mistake that folks make, 

The big trick here is to reduce the reason for them to be _where_ they can
make a fat-finger.  As I (in an overbearing manner) suggested, only put
things in the repository that the users need to get to through cvs, and if
you are CMing other things, they should be in other directories that are
controlled by a different CM agent (which might be A single human||user),
not all users need write access to _all_ the directories with the artifacts
contained in them.

> or the mistaken
> impression that they're on server A when, in fact they're on server B.  As
> such, it's probably not worth the administrative hassle to restrict ssh (but
> you're right; that's probably the best solution for a secure environment).
> 

To solve the server A vs B problem, on our lan we use rsh and some ssh.  The
big thing though is to get the users to _ consistently _ use the _ remote _
access method, even when they are on the server local to the hard drive.  In
short, all users should ALWAYS use a remote access method to the same
'remote' computer even when they are on the 'remote' computer. I have
accomplished this by having a script for each project, that when the person
changes to a new project they start sourceing the appropriate script to
setup things like $CVSROOT, path to libs, compilers and programing tools (as
needed), this way we have configuration management over the pertinent parts
of the environment the program is being created in.  


-- 
Todd Denniston
Crane Division, Naval Surface Warfare Center (NSWC Crane) 
Harnessing the Power of Technology for the Warfighter




reply via email to

[Prev in Thread] Current Thread [Next in Thread]