Shiela is an access control and logging facility for use with the Concurrent Versions System (CVS). It is intended to be hooked into CVS's processing through the $CVSROOT/CVSROOT/xxxinfo callbacks. This way Shiela provides access control on a path and branch basis to particular repository users and user groups. Additionally, repository operations are monitored, accumulated, and logged. The lookout of logging messages can be configured individually on a module path and branch basis and messages can be both saved to files and/or delivered by email.
Release Notes: This release fixes an "arbitrary shell command execution" security bug caused by missing shell command argument escaping for user supplied arguments (CVE-2006-3633). The build environment was upgraded to GNU shtool 2.0.6 and GNU autoconf 2.60.
Release Notes: A security fix was done by upgrading the build environment to GNU shtool 2.0.3.
Release Notes: The build environment has been upgraded to GNU shtool 2.0.1. Internal error handling and shiela-install.pod's description of the "--loginfo" hook have been fixed. A buggy optimization in Perl versions 5.8.4 and higher has been worked around.
Release Notes: This release fixes determination of the "handle" field under new CVS 1.12.x where ISO formatted dates are used in the output of "cvs log". It documents in install-shiela that CVS version 1.12.6 or higher is required.
Release Notes: This version fixes the determination of the line counts in the "Changes" field by no longer announcing to the CVS server that it can handle "MT" (message tagged) responses.