[svn.haxx.se] · SVN Dev · SVN Users · SVN Org · TSVN Dev · TSVN Users · Subclipse Dev · Subclipse Users · this month's index

Re: Proposal: Support for versioning symlinks and otherspecial files.

From: Greg Hudson <ghudson_at_MIT.EDU>
Date: 2004-06-29 03:27:13 CEST

On Mon, 2004-06-28 at 21:19, Steve Williams wrote:
> > The idea here is to protect the user from the server, not to protect the
> > operating system from the user.
> Protect the user from themselves? Now that would be a selling point. :)

I'm not sure how I'm failing to get through here. The server operator
is not the user of the client.

If I type "svn co http://svn.collab.net/repos/svn/trunk", I expect it to
put some files on disk. I don't expect the server operators to be able
to instruct my client to run arbitrary commands or to be able to create
device special files in my working area. It would be a violation of
reasonable security expectations for Subversion to give the server too
much power by default.

(It so happens that what I'm checking out is a piece of software, which
I'm likely to try to compile and run, so the Collabnet people could have
just stuck their malicious code in the Makefile or whatever. But
Subversion is not only used to version source code, and people don't run
every piece of code they check out.)

To unsubscribe, e-mail: dev-unsubscribe@subversion.tigris.org
For additional commands, e-mail: dev-help@subversion.tigris.org
Received on Tue Jun 29 03:28:20 2004

This is an archived mail posted to the Subversion Dev mailing list.