[svn.haxx.se] · SVN Dev · SVN Users · SVN Org · TSVN Dev · TSVN Users · Subclipse Dev · Subclipse Users · this month's index

Re: Multiple users using ssh through a single server-side login

From: Thomas Harold <thomas-lists_at_nybeta.com>
Date: Mon, 16 Nov 2009 16:09:00 -0500

On 11/15/2009 3:10 PM, dale wrote:
> I'm want to have a very locked down server with just one linux login
> shared by all developers (Windows / Tortoise). I found Bodhi's write-
> up here http://blog.bodhizazen.net/linux/svnssh/comment-page-1/#comment-1270
> But I'm having trouble getting it to work with Tortoise vs. a Windows
> Collabnet svn shell client.
>
> Anyone else successfully done something like this? If so, any
> pointers to how?
>
> NOTE: I know how to use Tortoise and ssh--the trick that's not
> working is how to get multiple front-end users tunneled through one
> server login and still preserve their svn identity in subversion write
> activities.

It's also mentioned in the SVN Book.

http://svnbook.red-bean.com/en/1.5/svn.serverconfig.svnserve.html#svn.serverconfig.svnserve.sshtricks

It's also possible to have multiple users share a single account.
Instead of creating a separate system account for each user, generate a
public/private key pair for each person. Then place each public key into
the authorized_users file, one per line, and use the --tunnel-user option:

command="svnserve -t
--tunnel-user=harry",no-port-forwarding,no-agent-forwarding,no-X11-forwarding,no-pty
TYPE1 KEY1 harry_at_example.com

command="svnserve -t
--tunnel-user=harry",no-port-forwarding,no-agent-forwarding,no-X11-forwarding,no-pty
TYPE2 KEY2 sally_at_example.com

...

One personal note... I prefer to use a full path for the svnserve
executable (such as /usr/bin/svnserve), which forces SSH to use the
svnserve executable in the /usr/bin folder intead of searching the PATH.

We also use the "-r /var/svn" option for svnserve, so that our svn+ssh
URLs show up with the SVN repository as the root level. It's the
difference between:

svn+ssh://svn.example.com/var/svn/reposname

And...

svn+ssh://svn.example.com/reposname

...

While we don't do multiple users piped into a single server-side
account, we do use both TortoiseSVN and CollabNet's SVN client using
svn+ssh with public key authentication here. The private keys are loaded
into Pageant and we configure a PuTTY session (because we run SSH on a
non-standard port).

------------------------------------------------------
http://tortoisesvn.tigris.org/ds/viewMessage.do?dsForumId=4061&dsMessageId=2418669

To unsubscribe from this discussion, e-mail: [users-unsubscribe_at_tortoisesvn.tigris.org].
Received on 2009-11-16 22:10:12 CET

This is an archived mail posted to the TortoiseSVN Users mailing list.

This site is subject to the Apache Privacy Policy and the Apache Public Forum Archive Policy.