Manuel VACELET wrote:
> Hi all (transfer from users@ list),
>
> I use subversion (client) 1.0.6 under both Solaris (8) and Linux build
> from sources.
>
> Default .subversion directory created by first svn call is bad protected
> (probaly using default umask) instead of setting 'chmod 0700'. This
> directory that can contains sensible datas (passwords in servers file)
> so it have to be well protected by default.
>
> It concerns ~/.subversion/servers that can contains proxy password.
>
> Morever I think a dot file (or directory) should be protected by default
> even if there is no 'sensitive' data into. So instead of chmod 0600
> ~/.subversion/servers, chmod 0700 ~/.subversion should be done.
I disagree.
_If_ someone deliberately enters a password in servers, they can secure it.
If they don't want to think about such things, then why is their home
directory globally readable at all?
Max.
---------------------------------------------------------------------
To unsubscribe, e-mail: dev-unsubscribe@subversion.tigris.org
For additional commands, e-mail: dev-help@subversion.tigris.org
Received on Sat Mar 5 20:43:52 2005