Re: chrooted ssh cvs server

[will <datafirm@mac.com>]

At 8:56 AM -0600 7/1/01, Tillman Hodgson wrote:
>On Sat, Jun 30, 2001 at 10:42:23PM -0700, will wrote:
>>  i think there may be a problem in this wrapper that chroots the repo.
>>
>> 
>>http://www.idealx.org/en/doc/chrooted-ssh-cvs-server/chrooted-ssh-cvs-server_monobloc.html#runcvs
>>
>>  help is greatly appreciated
>
>Where it says:
>
>
>         } else {
>                 execl("/bin/cvs", "cvs",
>                         "server",
>                         NULL);
>         }
>
>You'll probably want to add additional arguments, one per repository. Here's
>an example from the LOSURS (www.losurs.org) repository (which uses a different
>"run-cvs", but it's close enough and the differences don't affect the missing
>argument problem):
>
>         /* there should be --allow-root string for every
>            repository you are going to allow access to */
>         execl("/bin/cvs", "cvs",
>                 "--allow-root=/TILLMAN",
>                 "--allow-root=/LOSURS",
>                 "pserver",
>                 NULL);

I guess I could try that. Currently I compile a new version of 
run-cvs for each repo. and add then DEFINE base while compiling. The 
user logs on with a smrsh shell that calls the run-cvs wrapper; 
chrooting then and calling a statically compiled version of cvs, but 
I am still getting that cvs error, which is completely unknown to me.

Thanks for the ideas.


-- 
will