[Cvsnt] CVSNT authentication tests
Tony Hoyle
tmh at nothing-on.tv
Sun Jan 27 01:02:36 GMT 2002
Bo Berglund wrote:
> This of course raises a few questions:
> 1. Why is CVSROOT\passwd needed if I am connected using ntserver over
> the named pipe?? I assumed that passwd is used when the connection is
> via pserver...
In ntserver mode the passwd file effectively becomes a list of users who are allowed to access the server.
If you set SystemAuth=Yes then it'll let anyone in.
> 2. Why is the ntserver connection accepted if the user (me) is named
> in the passwd file, but with a completely bogus password?
The password isn't checked as you are already authenticated by the system.
> 3. Why is the CVSNT service not started if I disable the listening on
> the TCPIP port in the control panel applet? I thought that it was
> possible to have CVSNT *only* accept calls via ntserver by unchecking
> this setting....
It should be, but I suspect there's a bug.
Tony
--
"Wipe Info uses hexadecimal values to wipe files. This provides more
security than wiping with decimal values." -- Norton SystemWorks 2002 Manual
tmh at nothing-on.tv
http://www.nothing-on.tv
_______________________________________________
Cvsnt mailing list
Cvsnt at cvsnt.org
http://www.cvsnt.org/cgi-bin/mailman/listinfo/cvsnt
More information about the cvsnt
mailing list