Jon Loeliger <jdl@xxxxxxx> wrote: > So, like, the other day Junio C Hamano mumbled: > > > > It all depends on how you start git-daemon, but the last > > parameters to git-daemon are path whitelist so presumably > > placing the private repository outside of it should be enough. > > > > Or am I missing something deeper? > > I want git-daemon to serve up the repository. > I just want to have it served to people who can > supply a password or have an ssh key in place. Don't use git-daemon. Instead create UNIX accounts for the people who need access and if you don't want them to actually be able to login set their shell to be `git-sh`. This is a special shell-like thing that only lets the user push or fetch to any repository they have access to. The URL is a 'git+ssh' style URL and they will use SSH to connect. Access is controlled by standard UNIX user/group read/write access and ACLs if your OS/filesystem support them. You can also control pushing with an update hook. -- Shawn. - To unsubscribe from this list: send the line "unsubscribe git" in the body of a message to majordomo@xxxxxxxxxxxxxxx More majordomo info at http://vger.kernel.org/majordomo-info.html