Re: More strict file permissions for the administrative ".svn" directories

From: David Glasser <glasser_at_davidglasser.net>
Date: Thu, 14 Jan 2010 11:44:08 -0500

On Tue, Jan 12, 2010 at 10:40 AM, Ivan Zahariev <rrdtool_at_famzah.net> wrote:
> Hi devs,
>
> I've first discussed this at the "users" list and there was no big
> interest but also no negative feedback there. Therefore I'm suggesting
> this to you now:
>
> Would you make the ".svn" directories not accessible by "others" (thus
> being accessible only by the "owner" and "group") ?
>
> You can review the full thread along with the security problem
> description and a patch at the following address:
> http://mail-archives.apache.org/mod_mbox/subversion-users/201001.mbox/%3C4B4B05E8.1060909@famzah.net%3E

There do exist people (unfortunately) who want to share wcs between
users. In the future where there's only one .svn per wc, I think this
solution is great: make them private when created, but if somebody
chmods them public, it sticks. But while we still have tons of .svns
(we do still even on trunk, right?) that seems like it would make this
sort of use impossible.

--dave

-- 
glasser_at_davidglasser.net | langtonlabs.org | flickr.com/photos/glasser/

Received on 2010-01-14 17:45:16 CET

This message: [ Message body ]
Next message: Hyrum K. Wright: "Re: Subversion in 2010"
Previous message: Mark Phippard: "Re: Subversion in 2010"
In reply to: Ivan Zahariev: "More strict file permissions for the administrative ".svn" directories"
Next in thread: Ivan Zahariev: "Re: More strict file permissions for the administrative ".svn" directories"
Reply: Ivan Zahariev: "Re: More strict file permissions for the administrative ".svn" directories"

Contemporary messages sorted: [ by date ] [ by thread ] [ by subject ] [ by author ] [ by messages with attachments ]