[svn.haxx.se] · SVN Dev · SVN Users · SVN Org · TSVN Dev · TSVN Users · Subclipse Dev · Subclipse Users · this month's index

Re: libsvn_repos logging -- rethunk

From: Ben Collins-Sussman <sussman_at_collab.net>
Date: 2005-07-18 04:15:17 CEST

On Jul 17, 2005, at 9:02 PM, Christopher Ness wrote:
>
> Allowing a client to write their own entries in the servers log (on
> remote machine) seems like a design mistake to me. Couldn't this
> become
> a DOS attack as _anyone_ can write a client to fire log messages at a
> repository server.
>
> I might have misinterpreted the comment though,

Yes you have. We're only talking about clients accessing the
repository directly via file:/// urls. Users who can do this are
already free to open the database files in emacs and tweak them
however they want. There's no "permissions" other than whatever the
OS file permissions allow.

svnserve and 'svn subcommand file:///' already share 80% of their
code -- it's all in the libsvn_repos library. So that's why I'm
trying to tie logging to libsvn_repos. The following processes all
open repositories directly for reading/writing:

     mod_dav_svn
     svnserve
     svnlook
     svnadmin
     svn subcommand file:///

And thus all of these processes should be able to log things when
they use the repository.

I think you're assuming that we're talking about clients sending
"please log this" requests over a network. We're not. :-)

---------------------------------------------------------------------
To unsubscribe, e-mail: dev-unsubscribe@subversion.tigris.org
For additional commands, e-mail: dev-help@subversion.tigris.org
Received on Mon Jul 18 04:15:59 2005

This is an archived mail posted to the Subversion Dev mailing list.