Lapo Luchini wrote: > Today I finally solved one of the problems that I have since a long > time: how to let people access CVS via SSH but not give them shell access. > > It was *much* easier than expected, but real strange for a person that > uses Windows a lot: it wouldn't certainly permit to have a .BAT as a > shell... > > --[ /usr/local/bin/cvsonly ]--------------------------- > #!/bin/sh > > if [ "$*" != "-c cvs server" ]; then > echo "CVS Only!"; > exit; > fi; > cvs server > --[ /usr/local/bin/cvsonly ]--------------------------- > > Maybe it's not perfect or secure as possible, but it's always better > that using a "normal" shell ^_^
Actually, that's nicer than the way I'd heard of (which is, btw, the one used on sources.redhat.com): Use the command="cvs server" option in authorized_keys. (see man sshd for details). But that won't print a message. Max. -- Unsubscribe info: http://cygwin.com/ml/#unsubscribe-simple Bug reporting: http://cygwin.com/bugs.html Documentation: http://cygwin.com/docs.html FAQ: http://cygwin.com/faq/
