Re: svnserve.conf: anon-access = none (instead of read)

From: Max Bowsher <maxb1_at_ukf.net>
Date: 2006-11-08 15:06:05 CET

Olaf van der Spek wrote:
> Hi,
>
> Could you change the default anon-access from read to none?
> No access is safer than read-only access.
> If the admin does want read-only access, little harm is done.

I was initially against this, but after musing on it a little while, the
following scenario occurred to me:

What if a user creates a repository never intending it for svnserve
access at all, and therefore does not bother to configure
conf/svnserve.conf, but then later, a svnserve daemon is deployed
operating without a --root parameter?

Given the possibility for accidents of this nature, I'm inclined to
implement Olaf's suggestion.

Thoughts?

Max.

application/pgp-signature attachment: OpenPGP digital signature

Received on Wed Nov 8 15:06:37 2006

This message: [ Message body ]
Next message: Max Bowsher: "Re: [HCoop-Discuss] SVN security issues"
Previous message: Garrett Rooney: "Re: Bug with SVN::Client::diff() and in-memory files"
In reply to: Olaf van der Spek: "svnserve.conf: anon-access = none (instead of read)"
Next in thread: Malcolm Rowe: "Re: svnserve.conf: anon-access = none (instead of read)"
Reply: Malcolm Rowe: "Re: svnserve.conf: anon-access = none (instead of read)"

Contemporary messages sorted: [ By Date ] [ By Thread ] [ By Subject ] [ By Author ] [ By messages with attachments ]