[Top][All Lists]
[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
RE: Security, audits and pserver
From: |
Paul Sander |
Subject: |
RE: Security, audits and pserver |
Date: |
Mon, 16 Dec 2002 10:35:39 -0800 |
The advantage to chroot environments is that they can limit exposure to
things like rogue *info scripts that might reach beyond the CVS repository.
This is handy in the event that you store sensitive data on the machine
in addition to the repository.
The biggest argument in favor of user accounts is that the operating system
is much better at authenticating users, logging their activities, and
enforcing access controls than the CVS application is. And if a user
manages to break out of the application somehow, he's not anonymous and you
know where to turn when things go bad.
So the answer to your question is yes, and no.
--- Forwarded mail from address@hidden
Are chrooted environments truly more secure than accessing pserver over an
ssh tunnel?
--- End of forwarded message from address@hidden
Re: Security, audits and pserver, Phil R Lawrence, 2002/12/12
RE: Security, audits and pserver, Neis, Mark, 2002/12/12
RE: Security, audits and pserver, Douglas Finkle, 2002/12/13
RE: Security, audits and pserver, Walter, Jan, 2002/12/16
RE: Security, audits and pserver, Walter, Jan, 2002/12/16