=================================================================== RCS file: /cvsrepo/anoncvs/cvs/www/anoncvs.html,v retrieving revision 1.158 retrieving revision 1.159 diff -u -r1.158 -r1.159 --- www/anoncvs.html 2001/09/26 07:31:49 1.158 +++ www/anoncvs.html 2001/10/14 15:35:28 1.159 @@ -178,17 +178,17 @@
-NOTE: For users wishing to use ssh, you must first set the -CVS_RSH variable to ssh. +NOTE: For users wishing to use rsh, you must first set the +CVS_RSH variable to rsh.
- $ export CVS_RSH=/usr/bin/ssh + $ export CVS_RSH=/usr/bin/rsh
- % setenv CVS_RSH /usr/bin/ssh + % setenv CVS_RSH /usr/bin/rsh
-Please see the note about using ssh vs. rsh below! +Please see the note about ssh vs. rsh below!
-Anoncvs: rsh vs. ssh
-
-By default, the CVS client uses rsh to talk to the CVS server. Many
-of the CVS sites no longer support rsh for security reasons or a local
-problem like a firewall or imperfect protocol emulator such as slirp
-may prevent you from using rsh.
-The alternative is a to use a "secure shell" connection using
-OpenSSH.
+By default, the CVS client uses ssh ("secure shell":
+OpenSSH) to talk to the CVS server.
-Once ssh is installed, one sets the environment variable -CVS_RSH to point to ssh (typically -/usr/bin/ssh). If your local site prevents you -from connecting out to port 22 (which ssh defaults to using) use port -2022. +Many of the CVS sites no longer support rsh for security reasons. Local +problems like firewalls or imperfect protocol emulators such as slirp may +also hinder rsh usage. However, if rsh is desired, one must set the +CVS_RSH environment variable to point to rsh +(typically /usr/bin/rsh).
-Do not be tempted to turn on compression since CVS already compresses. -Use something like the following in your $HOME/.ssh/config -file. Note that not all anoncvs servers allow ssh connections on -port 2022. Also note that most anoncvs servers no longer accept -the none cipher as it is disabled in recent -versions of ssh for security reasons. +If local policy prevents outgoing connections to ssh's default port of 22, +port 2022 may be used in its place. Note, however, that not all anoncvs +servers accept ssh connections on this port. Furthermore, most anoncvs servers +no longer accept the none cipher, as it is disabled in +recent versions of ssh for sercurity reasons. Also, do not be tempted +to turn on compression: CVS already compresses. + +
+One could specify something like the following in the +$HOME/.ssh/config configuration file to avoid the pitfalls +and restrictions mentioned above:
Host anoncvs.ca.openbsd.org + Compression no Port 2022@@ -799,7 +799,7 @@ www@openbsd.org -