[cvsnt] viewvc repecting cvsnt's ACLs
Jürgen Depicker
jurgen.depicker at gmail.com
Mon Mar 12 19:41:37 GMT 2007
Torsten, do you mean running the stand-alone viewvc webserver? Because
I was thinking about that before, if only that wouldn't open a little
security hole.
Let's suppose user A starts up an instance of viewvc's standalone
server. Let's suppose it uses port 5000. Other ssh users could tunnel
to the same port if they liked, or that's what I think at present. Am I
wrong?
>
>
> Jürgen Depicker wrote:
> > I have to disagree partly with Bo, sorry ;-).
> > I can password-protect directories by using apache directives:
> >
> True, but that assumes that every file in that directory uses the same
> ACL. This is not always the case.
> > Am I wrong thinking this is an interesting extension to cvsnt, if we
> > would set up such an integrated system, with viewvc respecting acls?
> Or
> > am I the only one interested in such a thing? Or was I wrong n
> > selecting cvs, and is svn the way to go? Why did viewvc drop cvs
> > development?
> I don't think they have ever 'dropped CVS'. Indeed, they support the
> CVSNT RCS wrappers directly.
>
> Assuming that the CVSNT RCS wrappers respect the ACL's, it is simply a
> matter of making ViewVC run as the authenticated user. You can create a
> small setuid program for this.
>
> -Torsten
> _______________________________________________
> cvsnt mailing list
> cvsnt at cvsnt.org
> http://www.cvsnt.org/cgi-bin/mailman/listinfo/cvsnt
>
More information about the cvsnt
mailing list