Re: Client side hook scripts

Malcolm Rowe <malcolm-svn-dev@farside.org.uk> wrote on 13.10.2005
12:16:17:

> On Wed, Oct 12, 2005 at 09:38:13PM -0400, Greg Hudson wrote:
> > Client-side hook scripts have bad security implications; they allow
the
> > server to tell the client to do anything at all, when the user was
> > really only interested in letting the server feed it updates.
>
> We could provide client-defined client-side hook scripts, allowing the
> client to run a given command after an update in a particular working
> copy, for example. No security risks then.
>
> But that's easier to do using scripts that wrap calls to svn themselves,
> in my opinion.

Well, yes. But then you run into a problem of "script" distribution.

And I do know that client side scripting is not as easy as it sounds (and
it doesn't sound easy at all :) )

Maybe "the best" solution would be to notify the client of each
client-side script change, with the option of accepting the script or not,
and enabling/disabling the scripts no matter what the server says. That
would of course be "a very advanced feature", because you would either
have to be able to understand the script you are receiving (wouldn't work
for secretaries), or trust your repository admin/owner completely (which
would work for anybody).

And you would also gain this neat measure of how successfully Subversion
is. As soon as you'd get the first Subversion worm, you'd know you have
finally made it >:-)

Cheers,

---
  Miha Vitorovic
  Inženir v tehničnem področju
  Customer Support Engineer
   NIL Data Communications,  Tivolska cesta 48,  1000 Ljubljana,  Slovenia
   Phone +386 1 4746 500      Fax +386 1 4746 501     http://www.NIL.si
---------------------------------------------------------------------
To unsubscribe, e-mail: dev-unsubscribe@subversion.tigris.org
For additional commands, e-mail: dev-help@subversion.tigris.org