--SUOF0GtieIMvvwua
Content-Type: text/plain; charset=iso-8859-15
Content-Disposition: inline
Content-Transfer-Encoding: quoted-printable

Also sprach Stefan Schumacher (stefan@net-tex.de)
> Also sprach S.P.Zeidler (spz@serpens.de)
> =20
> Those level 2 servers could use a sshd running on a port > 1024
> exclusively for the NetBSD cvs-sync user by permitting only that user and
> filtering IP source. Additionally, there is a shell for scp/sftp
> access-only available in pkgsrc, I guess this should work with rsync
> too, disallowing the rsync-user to login getting a "real" shell, if
> the master gets penetrated.
=20
Since the level 2 mirrors are countable, their vitality could be monitored=
=20
with a single ping or some heartbeat programm, so we can keep a
correct list of working mirrors on www.netbsd.org


--=20
PGP FPR: CF74 D5F2 4871 3E5C FFFE 0130 11F4 C41E B3FB AE33
--=20
The Rime Of The Ancient Sysadmin:
Lusers, lusers, everywhere - And all the disks did shrink
Lusers, lusers everywhere - Nor any one could think. -- J.D. Baldwin

--SUOF0GtieIMvvwua
Content-Type: application/pgp-signature
Content-Disposition: inline

-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.1 (NetBSD)

iD8DBQFCr1oiEfTEHrP7rjMRAuO8AJwLVrYbv2J7yGmMw7Q+jUalVxe0jwCgijvc
QBbgU5DYEYZyJaEAH5w+z30=
=8Z8Z
-----END PGP SIGNATURE-----

--SUOF0GtieIMvvwua--