Loading...
Helix SwarmHelix Swarm
Loading...

PerforcePasswords.html

  • //
  • guest/
  • steve_smythe/
  • PerforcePasswords.html #1
  • View
  • Commits
  • Open Download .zip Download (5 KB) 
  1. <html>
  2.  
  3. <head>
  4. <meta http-equiv="Content-Type" content="text/html; charset=windows-1252">
  5. <meta name="GENERATOR" content="Microsoft FrontPage 4.0">
  6. <meta name="ProgId" content="FrontPage.Editor.Document">
  7. </head>
  8.  
  9. <body>
  10. <h1>Perforce Passwords</h1>
  11. <hr>
  12. <h2>Abstract:</h2>
  13. <p>Perforce enables you to protect your user account from other people accessing
  14. it by their &quot;password&quot; mechanism.&nbsp; By simply associating a
  15. password with your user account, no one without the password can access
  16. it.&nbsp; However, since the Perforce client requires access to the password in
  17. a cleartext format, there are security risks, and thus must be addressed by
  18. operating system access control of a file containing the cleartext
  19. password.&nbsp; This document describes how to set up seamless multiple
  20. operating system Perforce client access using passwords.</p>
  21. <hr>
  22. <h2>Contents:</h2>
  23. <ul>
  24.   <li><a href="#Risks">Risks</a></li>
  25.   <li><a href="#NT">NT</a></li>
  26.   <li><a href="#Solaris">Solaris</a></li>
  27.   <li><a href="#Set your password on the Perforce server">Set your password on
  28.     the Perforce server</a></li>
  29.   <li><a href="#Tell Perforce to use your P4CONFIG file">Tell Perforce to use your P4CONFIG file</a></li>
  30. </ul>
  31. <hr>
  32. <h2><a name="Risks">Risks</a></h2>
  33. <p>The P4PASSWD variable is the biggest security risk in the entire Perforce
  34. security model.</p>
  35. <p>On the command line, typing:</p>
  36. <pre>% p4 set</pre>
  37. <p>Will reveal your P4PASSWD value in cleartext.&nbsp; Unless you password lock
  38. your workstation when you walk away, someone could walk up to your terminal,
  39. activate a command line (Unix or NT, whichever you have set up), type this
  40. command, and acquire your Perforce password.</p>
  41. <p><b>Solution: Password protect your workstation when you walk away from it.</b></p>
  42. <hr>
  43. <h2><a name="NT">NT</a></h2>
  44. <p>When you log into your NT host, you automatically have a drive &quot;S:&quot;
  45. mapped to '\\TOASTER\{COS username}'.&nbsp; This directory is readable on a
  46. Solaris system, so it is important that you follow the directions for setting up
  47. your Solaris environment listed below to prevent others from being able to read
  48. your cleartext password.</p>
  49. <ul>
  50.   <li>Create the &quot;<a href="file:///S:/Perforce">S:\Perforce</a>&quot;
  51.     folder.</li>
  52.   <li>Create the &quot;<a href="file:///S:/Perforce/P4CONFIG">S:\Perforce\p4config</a>&quot;
  53.     file using your favorite text editor.&nbsp; The file should contain:
  54.     <font face="Courier New">P4PASSWD=yourpassword</font></li>
  55. </ul>
  56. <p><b>FOR YOUR INFORMATION</b></p>
  57. <p>The NT Perforce client uses the NT Registry to store persistent default
  58. information about P4CLIENT, P4EDITOR, P4USER, P4PORT, P4PASSWD and (the most
  59. important) P4CONFIG.&nbsp; Fortunately, in version 99.2 and later, of Perforce, the
  60. &quot;P4PASSWD&quot; value is stored in an encrypted format in
  61. &quot;HKEY_CURRENT_USER\Software\Perforce\environment\P4PASSWD&quot;.</p>
  62. <hr>
  63. <h2><a name="Solaris">Solaris</a></h2>
  64. <p>Solaris has always had good file system security, and allows you to protect a
  65. directory so that only your userid has access to it.&nbsp; If you do not have
  66. Solaris access (via &quot;telnet mongo&quot;, for example), get an account set
  67. up via the IT helpdesk (<a href="http://helpdesk">http://helpdesk</a>).</p>
  68. <p>In your Solaris home directory:</p>
  69. <ul>
  70.   <li>mkdir Perforce</li>
  71.   <li>chmod ga-rxw Perforce</li>
  72.   <li>cd Perforce</li>
  73. </ul>
  74. <p>Then, with your favorite text editor (vi, emacs, whatever), edit the file
  75. &quot;p4config&quot;.&nbsp; The file should contain:
  76.     <font face="Courier New">P4PASSWD=yourpassword</font></p>
  77. <hr>
  78. <h2><a name="Set your password on the Perforce server">Set your password on the
  79. Perforce server</a></h2>
  80. <p>Once you have set up your P4CONFIG files as mentioned above, all you have to
  81. do now is tell the Perforce server what your password is:</p>
  82. <ul>
  83.   <li>p4 passwd</li>
  84. </ul>
  85. <p>Just type in the same password here as in your P4CONFIG file.&nbsp; Use this
  86. process to change your password as well.</p>
  87. <hr>
  88. <h2><a name="Tell Perforce to use your P4CONFIG file">Tell Perforce to use your P4CONFIG file</a></h2>
  89. <p>On Windows, on the command line, type &quot;p4 set P4CONFIG={path to
  90. p4config.txt}&quot;.
  91. </p>
  92. <p>On Solaris, edit your shell startup script (for cshrc it's the &quot;$HOME/.cshrc&quot;
  93. file) and add something like:
  94. </p>
  95. <blockquote>
  96. <p><font face="Courier New">setenv P4CONFIG /home/yourusername/Perforce/p4config</font>
  97. </p>
  98. </blockquote>
  99. <hr>
  100. <p>Last updated: <!--webbot bot="Timestamp" S-Type="REGENERATED"
  101. S-Format="%m/%d/%y %I:%M:%S %p" startspan -->02/26/01 09:09:39 AM<!--webbot bot="Timestamp" endspan i-CheckSum="27097" -->
  102. </p>
  103. </body>
  104.  
  105. </html>
# Change User Description Committed
#1 558 Steve Smythe Added Perforce password doc based on high demand from email requests. 24 years ago