Molle Bestefich wrote:
> John Szakmeister wrote:
>
>>>Hm, out of curiosity, would it be sufficient for your needs if the
>>>user can *see* the other repositories (that they exist, including the
>>>name of the repositories), but does not have access to browse whatever
>>>folders the repositories contain?
>>
>>No. Even a name is too much information in our situation.
>
>
> Hm, that would definitely take some additional thought then.
> Would you mind me asking what situation you are in since you have this
> requirement?
I work in a classified environment. In particular, we're often faced
with the situation where a third party needs to sit next to us for some
period of time and aid us in development. However, we have other
ongoing projects that they aren't even allowed to know exist. Their
access is extremely restricted, and we take extraordinary measures to
prevent any accidental disclosure of classified information.
> And you do realize that finding the repository names is most probably
> a quite trivial task, right?
No need to make it easier though. Also, audit logs are reviewed every
week (and often more frequent than that, especially on our web server).
Such action would be deemed over the top and possibly end up with your
clearance being revoked. Trying to circumvent the measures that we've
put in place is borderline criminal. Trust me, we take all of this
*very* seriously.
-John
---------------------------------------------------------------------
To unsubscribe, e-mail: dev-unsubscribe@subversion.tigris.org
For additional commands, e-mail: dev-help@subversion.tigris.org
Received on Wed Mar 9 20:38:16 2005