[svn.haxx.se] · SVN Dev · SVN Users · SVN Org · TSVN Dev · TSVN Users · Subclipse Dev · Subclipse Users · this month's index

Re: .subversion default rights

From: Max Bowsher <maxb_at_ukf.net>
Date: 2005-03-05 20:42:33 CET

Manuel VACELET wrote:
> Hi all (transfer from users@ list),
>
> I use subversion (client) 1.0.6 under both Solaris (8) and Linux build
> from sources.
>
> Default .subversion directory created by first svn call is bad protected
> (probaly using default umask) instead of setting 'chmod 0700'. This
> directory that can contains sensible datas (passwords in servers file)
> so it have to be well protected by default.
>
> It concerns ~/.subversion/servers that can contains proxy password.
>
> Morever I think a dot file (or directory) should be protected by default
> even if there is no 'sensitive' data into. So instead of chmod 0600
> ~/.subversion/servers, chmod 0700 ~/.subversion should be done.

I disagree.

_If_ someone deliberately enters a password in servers, they can secure it.

If they don't want to think about such things, then why is their home
directory globally readable at all?

Max.

---------------------------------------------------------------------
To unsubscribe, e-mail: dev-unsubscribe@subversion.tigris.org
For additional commands, e-mail: dev-help@subversion.tigris.org
Received on Sat Mar 5 20:43:52 2005

This is an archived mail posted to the Subversion Dev mailing list.

This site is subject to the Apache Privacy Policy and the Apache Public Forum Archive Policy.