[svn.haxx.se] · SVN Dev · SVN Users · SVN Org · TSVN Dev · TSVN Users · Subclipse Dev · Subclipse Users · this month's index

Re: CGI for repository administration

From: Karl Fogel <kfogel_at_newton.ch.collab.net>
Date: 2003-01-07 15:42:22 CET

Philip Martin <philip@codematters.co.uk> writes:
> > Oh, I see. What was the reason for this change?
>
> It was quite possibly an unintended side-effect of r3831.

s/quite possibly/definitely

> > Is there a security
> > issue with it?
>
> I don't believe so. A repository administrator who wants to link to
> an insecure file should be free to do so :)

The fix is to change the test in the hook-running code. Josef, if you
have time to make a patch, then great, otherwise can you file a quick
issue pointing to this thread? Thanks,

-K

---------------------------------------------------------------------
To unsubscribe, e-mail: dev-unsubscribe@subversion.tigris.org
For additional commands, e-mail: dev-help@subversion.tigris.org
Received on Tue Jan 7 16:30:27 2003

This is an archived mail posted to the Subversion Dev mailing list.