[cvsnt] Re: SSL ?
Tony Hoyle
tmh at nodomain.org
Thu Aug 12 15:30:51 BST 2004
Kevin J. Warnke wrote:
> I'm currently using PSERVER as my protocol but I would like to go to a more
> secure model. Users are connecting to the server over the internet, though,
> so I can't use any Windows-specific stuff (other than validating credentials
> through PSERVER, etc.).
>
>
>
> I've been seeing stuff about SSL and "sserver" but I'm not sure how that
> compares to pserver or even where to begin. Does anyone have any comments
> on this and/or links to instructions for use?
sserver is just like pserver except the entire session is encrypted.
sspi also works over the internet and can be forced to encrypt.
With remote clients the issue is local storage of the password - this
can be helped somewhat by using the cvsnt password agent instead of
using cvs login.. depends on how secure your clients need to be of course.
Tony
(It's a pity you can't get remote kerberos tickets from an Active
Directory server, but MS never implemented a kinit command unfortunately).
More information about the cvsnt
mailing list