Re: CGI for repository administration

From: Karl Fogel <kfogel_at_newton.ch.collab.net>
Date: 2003-01-07 15:42:22 CET

Philip Martin <philip@codematters.co.uk> writes:
> > Oh, I see. What was the reason for this change?
>
> It was quite possibly an unintended side-effect of r3831.

s/quite possibly/definitely

> > Is there a security
> > issue with it?
>
> I don't believe so. A repository administrator who wants to link to
> an insecure file should be free to do so :)

The fix is to change the test in the hook-running code. Josef, if you
have time to make a patch, then great, otherwise can you file a quick
issue pointing to this thread? Thanks,

-K

---------------------------------------------------------------------
To unsubscribe, e-mail: dev-unsubscribe@subversion.tigris.org
For additional commands, e-mail: dev-help@subversion.tigris.org
Received on Tue Jan 7 16:30:27 2003

This message: [ Message body ]
Next message: Karl Fogel: "Re: link import problem"
Previous message: Branko Čibej: "Re: Looking for the equivalent of p4 obliterate..."
In reply to: Philip Martin: "Re: CGI for repository administration"
Next in thread: Wolf Josef: "RE: CGI for repository administration"

Contemporary messages sorted: [ By Date ] [ By Thread ] [ By Subject ] [ By Author ] [ By messages with attachments ]