Re: introducing myself...

From: Greg Hudson <ghudson_at_MIT.EDU>
Date: 2003-06-20 07:13:15 CEST

You might be interested in OpenCM. It uses signed commits and other
cryptographic controls to ensure security properties Subversion is (so
far) not interested in. Though I'm not sure that's the approach you
want to take.

On Wed, 2003-06-18 at 23:50, Bob Aiello wrote:
> (e.g. database
> security & integrity checking, audit logs that cannot be
> found - let along tampered with).

The normal approach I know about for ensuring the integrity of audit
logs is to send them over the network to another machine. I'm kind of
curious how else you would propose to make it impossible to find and
tamper with audit logs.

---------------------------------------------------------------------
To unsubscribe, e-mail: dev-unsubscribe@subversion.tigris.org
For additional commands, e-mail: dev-help@subversion.tigris.org
Received on Fri Jun 20 07:14:10 2003

This message: [ Message body ]
Next message: Norbert Gruener: "Re: saving time stamps of files - nearly finished, help still needed"
Previous message: P.Marek: "Re: timestamp preservation design (issue 1256)"
In reply to: Bob Aiello: "introducing myself..."
Next in thread: Bob Aiello: "Re:CM Security - introducing myself..."
Reply: Bob Aiello: "Re:CM Security - introducing myself..."
Reply: Bob Aiello: "openCM"

Contemporary messages sorted: [ By Date ] [ By Thread ] [ By Subject ] [ By Author ] [ By messages with attachments ]