today another bunch of exploitable security holes in CVS was published. I therefore disabled anonymous access via pserver. As a workaround you can still use rsync to mirror the cvs archive, then do a checkout or update from the mirror. This may take some modification to the CVS/Repository and CVS/Root files. Sorry for the inconvenience, Ralf
