Re: Please sign software with GnuPG


Peter Wainwright <prw wainpr demon co uk> writes:

> That said, I don't know what the security issues are with CVS.

the most severe security issue with GNOME CVS is probably that it
still uses the pserver protocol that gives no reasonable
authentification at all although there are alternatives around for
years. GNOME CVS is the only CVS server I know of that still doesn't
use ssh key authentification to identify trusted users that are
allowed to commit. Is there a good reason for that?

Salut, Sven

[Date Prev][Date Next]   [Thread Prev][Thread Next]   [Thread Index] [Date Index] [Author Index]