omezeni cvs
Peter Mann
Peter.Mann na tuke.sk
Čtvrtek Červen 5 14:46:29 CEST 2003
On Thu, Jun 05, 2003 at 01:10:57PM +0200, Stepan Roh wrote:
> On Thu, 5 Jun 2003, ertra wrote:
> > chtel bych se zeptat na nasledujici,
> > mam cvs a napojuji se na nej pomoci ssh
> > tj kazdy kdo ma unix account na te masine (linux) se muze na cvs napojit na
> > vsechny repository
> >
> > lze nejak udelat, aby urciti uzivatele meli pristup pouze k urcitym
> > repository ?
>
> Jestli se nemylim, tak v pripade pristup do CVS pomoci remote shellu se
> vse ridi dle normalnich prav na filesystemu. Tj. kdyz se tam ten uzivatel
> nedostane pres cd, tak se tam nedostane ani pres cvs+ssh.
skuste:
Chrooted SSH CVS Server Management Scripts
http://www.informatimago.com/linux/chrooted-ssh-cvs.en.html
Abstract. This document describes the steps necessary to setup a very
network-secure CVS server, allowing SSH access to a CVS repository. It
is then possible to have multiple repositories on the same server, each
one in its own protected directory tree (chrooted). The use of SSH (with
CVS_RSH) as a transport mechanism for CVS (instead of having a CVS
pserver and SSH tunneling between client and server) allows much more
secure and flexible use on the client side (provided SSH is installed,
of course). The shell accounts necessary for SSH to run are disabled in
order to allow only remote access to CVS. Both read-only (and even
anonymous, i.e. with a known password or even no password at all) and
read-write access can be granted, depending on the user accounts.
--
5o Peter.Mann at tuke.sk
KLFMANiK ICQ 12491471
PM2185-RIPE
Další informace o konferenci Linux