[cvsnt] ACLs, permissions, readers/writers, etc

[John Kinson]

Tony Hoyle wrote:

> You can't add passwd to checkoutlist as it's special (if you try it 
> CVSNT should stop you).  I should add group to that list, too.

I only tested the "admin" file and was able to replace it, so should 
that be added to the list of special files too?

> If you set an ACL so that nobody but administrators can even checkout 
> CVSROOT then it'll still work and be safe - the server itself accesses 
> the files directly so doesn't need read access via that mechanism.

Thanks that's a good tip.  Need to go lock down all my repos now and 
update my company procedures!

JK
-- 
http://www.yellowradio.com/

If technology doesn't seem like magic,
it's probably obsolete.