7 messages in com.perforce.perforce-user[p4] Secure and limited access| From | Sent On | Attachments |
|---|---|---|
| Richard Ramos | 09 Apr 2003 08:47 | |
| Todd Short | 09 Apr 2003 09:11 | |
| Richard Ramos | 09 Apr 2003 10:07 | |
| Eric D. Blom | 09 Apr 2003 16:28 | |
| Richard Ramos | 09 Apr 2003 19:04 | |
| Moon, Ed | 09 Apr 2003 19:58 | |
| Chuck Karish | 10 Apr 2003 07:51 |
| Subject: | [p4] Secure and limited access |
|---|---|
| From: | Moon, Ed (EMo...@sonypictures.com) |
| Date: | 04/09/2003 07:58:02 PM |
| List: | com.perforce.perforce-user |
If the box hosting Perforce is some sort of *nix server, you could always run the firewall on the server.
If you are using a reasonably sophisticated firewall, you could only allow access to the Perforce port given a particular interface or IP address range and allow free rein to a different interface/IP address range.
-----Original Message----- From: Richard Ramos [mailto:rramos at elitecorpusa.com] Sent: Wednesday, April 09, 2003 7:05 PM To: Andrew P Cc: tshort at cisco.com; perforce-user at perforce.com Subject: RE: [p4] Secure and limited access
Thanks. Sounds obvious. Unfortunately, my VPN box doesn't seem to support this feature.
Rich
-----Original Message----- From: Andrew P [mailto:perforceusera at ghost.spods.org] Sent: Wednesday, April 09, 2003 1:47 PM To: Richard Ramos Cc: tshort at cisco.com; perforce-user at perforce.com Subject: Re: [p4] Secure and limited access
Yup, just specify that they can only go to the one port - eg 1666.
-- A
On Wed, Apr 09, 2003 at 01:07:34PM -0400, Richard Ramos wrote:
I don't think I was clear enough. I'm trying to limit the access only
to the depot (i.e. no access to anything else on the server)?
Rich
-----Original Message----- From: perforce-user-admin at perforce.com [mailto:perforce-user-admin at perforce.com]On Behalf Of Todd Short Sent: Wednesday, April 09, 2003 12:12 PM To: Richard Ramos; perforce-user at perforce.com Subject: RE: [p4] Secure and limited access
Most VPN products can be configured to restrict the user to a specific
server.
<PRODUCT PLACEMENT>
The Cisco VPN 3000 Concentrator allows the administrator to specify a user filter that can restrict access to just that server. (Of course, DNS would be required, unless users use IP address.) In addition, by using split-tunneling, all other network can be configured to not go over the VPN tunnel. The Cisco VPN 3000 client is available on Windows, Linux, Solaris, and Mac OS X.
What can I say, I work on the product!
</PRODUCT PLACEMENT>
Most other products have similar functionality.
-- -Todd Short //tshort at cisco.com //"One if by land, two if by sea, three if by the Internet."
-----Original Message----- From: perforce-user-admin at perforce.com [mailto:perforce-user-admin at perforce.com]On Behalf Of Richard Ramos Sent: Wednesday, April 09, 2003 11:47 AM To: perforce-user at perforce.com Subject: [p4] Secure and limited access
This is as much a networking question as it is a perforce question.
Has anyone allowed VPN internet access to their depots while at the same time restricting the developers' access only to the code base?
How would you do this? Are there any security tradoffs in using the web interface vs. the standard client?
Richard Ramos
_______________________________________________ perforce-user mailing list - perforce-user at perforce.com http://maillist.perforce.com/mailman/listinfo/perforce-user
_______________________________________________ perforce-user mailing list - perforce-user at perforce.com http://maillist.perforce.com/mailman/listinfo/perforce-user
_______________________________________________ perforce-user mailing list - perforce-user at perforce.com http://maillist.perforce.com/mailman/listinfo/perforce-user
-- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - "Never ascribe to malice that which is caused by greed and ignorance." -- Cal Keegan
_______________________________________________ perforce-user mailing list - perforce-user at perforce.com http://maillist.perforce.com/mailman/listinfo/perforce-user