Bug 7235 - CVS pserver refuses to work with RedHat 6.1
Summary: CVS pserver refuses to work with RedHat 6.1
Alias: None
Product: Red Hat Linux
Classification: Retired
Component: cvs
Version: 6.1
Hardware: All
OS: Linux
Target Milestone: ---
Assignee: Nalin Dahyabhai
QA Contact:
Depends On:
TreeView+ depends on / blocked
Reported: 1999-11-22 21:37 UTC by martin
Modified: 2008-05-01 15:37 UTC (History)
0 users

Fixed In Version:
Doc Type: Bug Fix
Doc Text:
Clone Of:
Last Closed: 1999-11-22 21:43:59 UTC

Attachments (Terms of Use)

Description martin 1999-11-22 21:37:12 UTC
I am writing this to bug-cvs as well as bugzilla, as I do not wnow who's
actually concerned. Also, it might be an inetd bug rather than a CVS bug.
If so, I excuse myself for bothering anybody.

RedHat 6.1, cvs version 1.10-6.

This bug is actually very closely related to RH 6.1 #5893, which was
resolved with WONTFIX status. However #5893 applies only if pserver
is run as root. I wanted to run cvs pserver as a normal user anyway.
However, whenever a different user (i.e. not the one pserver is running as)
tries to do any CVS operation, this is the outcome:

$ cvs checkout Madmacs
setuid failed: Operation not permitted
cvs [checkout aborted]: authorization failed: server whisky rejected access

The line in inetd.conf reads:
cvspserver stream tcp nowait martin /usr/bin/cvs cvs \
--allow-root=/data/cvs pserver

"martin" is the user owning the repository /data/cvs.

If "martin" in inetd.conf is replaced by "root", the behaviour is
as described in bug #5893:
$ cvs checkout Madmacs
cvs server: cannot open /root/.cvsignore: Permission denied
cvs [server aborted]: can't chdir(/root): Permission denied

The same configuration (with user "martin") works perfectly on RedHat 5.2
(cvs 1.10-2), which is my current workaround.

Comment 1 Jim Kingdon 1999-11-22 21:43:59 UTC
You can specify a non-root user but you need to set up CVSROOT/passwd as
described at http://www.cyclic.com/cvs/unoff-nonroot.txt

Note You need to log in before you can comment on or make changes to this bug.