[darcs-users] Darcs Servers
Nicolas Pouillard
nicolas.pouillard at gmail.com
Fri Aug 7 12:32:27 UTC 2009
Excerpts from Grant Husbands's message of Fri Aug 07 13:48:42 +0200 2009:
> I'm hoping I'm mistaken, but it seems to be quite hard to set up a
> secure, working, internet-accessible Darcs server that allows
> relatively untrusted users to push changes. As I understand it the
> options are:
>
> 1. HTTP: A bit sniffable. Authentication not supported. Read-only.
> 2. HTTPS: Authentication not supported. Not supported at all on
> Windows (Darcs doesn't trust any root certs). Read-only.
> 3. SSH: Not secure, as it requires giving people shell access to the
> server. Allows file-edits that don't comply with version control.
You can use a custom restricted shell for these users. You could only
allow to call "darcs apply".
> 4. File-share: Firewalls and authentication issues can make this
> tricky, and it's long-winded. Allows file-edits that don't comply with
> version control.
> 5. Email (to accompany HTTP/HTTPS): Requires manual effort for patch
> application or can't return sensible error messages (if it can, then
> it can probably also serve as a spamming host).
Manual efforts can be automated :)
Best regards,
--
Nicolas Pouillard
http://nicolaspouillard.fr
More information about the darcs-users
mailing list