[cvsnt] Re: SSL ?

Kevin J. Warnke kwarnke at videoc.com
Thu Aug 12 16:33:01 BST 2004


Tony-

Would that include encryption of the CVS LOGIN portion so the password sent
over the wire is encrypted?

Do you know of a URL that describes how to set up SSERVER?  Is it as simple
as using SSERVER in the CVSROOT instead of PSERVER?

Thanks,
Kevin
kwarnke at videoc.com
-----Original Message-----
From: cvsnt-bounces at cvsnt.org [mailto:cvsnt-bounces at cvsnt.org] On Behalf Of
Tony Hoyle
Sent: Thursday, August 12, 2004 8:31 AM
To: cvsnt at cvsnt.org
Subject: [cvsnt] Re: SSL ?

Kevin J. Warnke wrote:

> I'm currently using PSERVER as my protocol but I would like to go to a
more
> secure model.  Users are connecting to the server over the internet,
though,
> so I can't use any Windows-specific stuff (other than validating
credentials
> through PSERVER, etc.).
> 
>  
> 
> I've been seeing stuff about SSL and "sserver" but I'm not sure how that
> compares to pserver or even where to begin.  Does anyone have any comments
> on this and/or links to instructions for use?

sserver is just like pserver except the entire session is encrypted. 
sspi also works over the internet and can be forced to encrypt.

With remote clients the issue is local storage of the password - this 
can be helped somewhat by using the cvsnt password agent instead of 
using cvs login.. depends on how secure your clients need to be of course.

Tony

(It's a pity you can't get remote kerberos tickets from an Active 
Directory server, but MS never implemented a kinit command unfortunately).

_______________________________________________
cvsnt mailing list
cvsnt at cvsnt.org
http://www.cvsnt.org/cgi-bin/mailman/listinfo/cvsnt





More information about the cvsnt mailing list