excalibur-dev mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From Niclas Hedhman <nic...@hedhman.org>
Subject Re: [Fwd: Re: Excalibur -- remaining task: group lists]
Date Wed, 16 Jun 2004 10:05:00 GMT
On Wednesday 16 June 2004 17:55, Mauro Talevi wrote:
> Peter Donald wrote:
> > a) svnserve currently has an unfixed security exploit
> > b) svn+ssh is not using svnserve anyways (it tunnels over ssh shell)
> > c) svn+ssh presumably not wanted as that requires committers have
> > accounts on machine and they want to move away from it
>
> I thought svn+ssh was svnserver over ssh.
> I would have also thought that some global nis-type authentication was
> setup.
>
> So every time one does a commit via command=line you have to provide
> user/passwd ?
> No way to use the ssh key?

The svnpassword is needed to be executed only once.

However, I like the 'flaw' in the concept;
1. You need to login to minotaur to execute svnpassword,
2. ASF will stop creating Unix accounts for committers.
3. So how??

Cheers
Niclas
-- 
   +------//-------------------+
  / http://www.bali.ac        /
 / http://niclas.hedhman.org / 
+------//-------------------+


---------------------------------------------------------------------
To unsubscribe, e-mail: dev-unsubscribe@excalibur.apache.org
For additional commands, e-mail: dev-help@excalibur.apache.org
Apache Excalibur Project -- URL: http://excalibur.apache.org/


Mime
View raw message