Re: Could svn check permissions?

From: John Peacock <jpeacock_at_rowman.com>
Date: 2003-09-08 20:40:11 CEST

Jack Repenning wrote:

> Here's a subtlety, could this be the one? You have to call setuid()
> first.

Except if I call setuid() first, the process is no longer priveleged enough to
call setgid(). :~( It may be that it is in practice impossible to use setgid()
to change the current process to an alternate group. *nix security is not
something I have spent a lot of time coding around.

> But I'm surprised you're not using chown/chmod -R, or library
> equivalents, on the repo after it's created (make it, then give it away).

I was trying not to break the abstraction layer of svn_repos_create(). I don't
want to have to walk the diretory tree to use chown/chmod; by switching the
effective user using setuid, everything gets created with the correct rights
with hardly any work on my part.

>
> You're not going to *believe* what it takes to do this on Windows!

I'm largely inured to the horror by now... ;~)

John

-- 
John Peacock
Director of Information Research and Technology
Rowman & Littlefield Publishing Group
4501 Forbes Boulevard
Suite H
Lanham, MD  20706
301-459-3366 x.5010
fax 301-429-5748
---------------------------------------------------------------------
To unsubscribe, e-mail: dev-unsubscribe@subversion.tigris.org
For additional commands, e-mail: dev-help@subversion.tigris.org

Received on Mon Sep 8 20:40:43 2003

This message: [ Message body ]
Next message: Jack Repenning: "Re: Could svn check permissions?"
Previous message: John Peacock: "Re: Could svn check permissions?"
In reply to: Jack Repenning: "Re: Could svn check permissions?"
Next in thread: Jack Repenning: "Re: Could svn check permissions?"
Reply: Jack Repenning: "Re: Could svn check permissions?"

Contemporary messages sorted: [ By Date ] [ By Thread ] [ By Subject ] [ By Author ] [ By messages with attachments ]