[cvsnt] secure cvs

[Thomas Keller]

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1


Hello all!

I'm trying to secure cvs to my server using different variants (obviously one 
would be enough).

My setup again:

cvsnt 2.0.51c on a redhat 7.3 box, OpenSSL and Kerberos 5 installed

The following things should be possible:

1) Connect to the repository from either Windows or Linux
2) Support for .cvspass password saving (so not :ext: where the ssh client 
needs to get the password on each action)

I tried :sserver: but end up in always the same SSL error:

140770FC:SSL routines:SSL23_GET_SERVER_HELLO:unknown protocol

I'm not exactly sure if SSL needs to be setupped on port 443 or if cvsnt just 
uses this protocol on a different port, because SSL is already setupped for 
the server in the apache environment. Though I use my own created CA like the 
howto in the cvsnt wiki told me.

Using :gserver: ended up in another mess:
cvs update: GSSAPI authentication failed: Miscellaneous failure
cvs [update aborted]: GSSAPI authentication failed: No credentials cache found

(I don't even know if cvsnt supports GSSAPI on server-side, the docs weren't 
clear on this either).

:sspi: can't be used server-side IMHO since this is a Windows-only protocol, 
right?

Any help is (still) muchly appreciated!
Tommy.

- -- 
PGP Public Key   : http://www.thomaskeller.biz/pgp/thomas-keller.pkr
Developer on     : http://www.musicmademe.com
Richtig zitieren : http://learn.to/quote 
Learn to quote   : http://www.netmeister.org/news/learn2quote.html

<erno> hm. I've lost a machine.. literally _lost_. it responds to ping, 
it works completely, I just can't figure out where in my apartment it is.
- - bash.org/?top
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.2.4 (GNU/Linux)

iD8DBQFBHrgqaf7NlBYNEJIRAljbAJ9Z7+CVt1OjvZHkAb0d95llwoBQywCgqSMV
rQZLb4gVhooWDoiWV/B1Y7g=
=n/Wr
-----END PGP SIGNATURE-----