upstream/mercurial-mirror Files · mercurial/help/hg-ssh.8.txt

sslutil: issue warning when unable to load certificates on OS X...

sslutil: issue warning when unable to load certificates on OS X Previously, failure to load system certificates on OS X would lead to a certificate verify failure and that's it. We now print a warning message with a URL that will contain information on how to configure certificates on OS X. As the inline comment states, there is room to improve here. I think we could try harder to detect Homebrew and MacPorts installed certificate files, for example. It's worth noting that Homebrew's openssl package uses `security find-certificate -a -p` during package installation to export the system keychain root CAs to etc/openssl/cert.pem. This is something we could consider adding to setup.py. We could also encourage packagers to do this. For now, I'd just like to get this warning (which matches Windows behavior) landed. We should have time to improve things before release.

Sean Farley - - Load All Authors

File last commit:

r29090:7b52cb38 stable


                r29499:9c5325c7

default

Download file

             hg-ssh.8.txt
        
                    71 lines
            
             | 1.8 KiB
            
                | text/plain
            
             |
                TextLexer

/ mercurial / help / hg-ssh.8.txt

History | Annotation | Raw |Copy content |Copy permalink

				========
				hg-ssh
				========

				----------------------------------------
				restricted ssh login shell for Mercurial
				----------------------------------------

				:Author: Thomas Arendsen Hein <thomas@intevation.de>
				:Organization: Mercurial
				:Manual section: 8
				:Manual group: Mercurial Manual

				.. contents::
				:backlinks: top
				:class: htmlonly
				:depth: 1

				Synopsis
				""""""""
				hg-ssh repositories...

				Description
				"""""""""""
				hg-ssh is a wrapper for ssh access to a limited set of mercurial repos.

				To be used in ~/.ssh/authorized_keys with the "command" option, see sshd(8):
				command="hg-ssh path/to/repo1 /path/to/repo2 ~/repo3 ~user/repo4" ssh-dss ...
				(probably together with these other useful options:
				no-port-forwarding,no-X11-forwarding,no-agent-forwarding)

				This allows pull/push over ssh from/to the repositories given as arguments.

				If all your repositories are subdirectories of a common directory, you can
				allow shorter paths with:
				command="cd path/to/my/repositories && hg-ssh repo1 subdir/repo2"

				You can use pattern matching of your normal shell, e.g.:
				command="cd repos && hg-ssh user/thomas/* projects/{mercurial,foo}"

				You can also add a --read-only flag to allow read-only access to a key, e.g.:
				command="hg-ssh --read-only repos/\*"

				Bugs
				""""
				Probably lots, please post them to the mailing list (see Resources_
				below) when you find them.

				See Also
				""""""""
				\|hg(1)\|_

				Author
				""""""
				Written by Matt Mackall <mpm@selenic.com>

				Resources
				"""""""""
				Main Web Site: https://mercurial-scm.org/

				Source code repository: http://selenic.com/hg

				Mailing list: http://selenic.com/mailman/listinfo/mercurial

				Copying
				"""""""
				Copyright (C) 2005-2016 Matt Mackall.
				Free use of this software is granted under the terms of the GNU General
				Public License version 2 or any later version.

				.. include:: common.txt

	Site-wide shortcuts
/	Use quick search box
g h	Goto home page
g g	Goto my private gists page
g G	Goto my public gists page
g 0-9	Goto bookmarked items from 0-9
n r	New repository page
n g	New gist page

	Repositories
g s	Goto summary page
g c	Goto changelog page
g f	Goto files page
g F	Goto files page with file search activated
g p	Goto pull requests page
g o	Goto repository settings
g O	Goto repository access permissions settings
t s	Toggle sidebar on some pages