passwd file permissions with svn+ssh

From: Kristian Kauper <kkauper_at_au.yahoo-inc.com>
Date: 2006-11-13 07:15:41 CET

Hi All,

I've seen this issue discussed on-line (in fact, on this mailing list, but
it wasn't resolved), but I can't find any bug in the issue tracker. Here's
the scenario:

I allow access to my repository via the svn:// scheme. So I have user
credentials stored in my repository's "passwd" file (to be clear, this is
subversion's passwd file, not the system passwd file). For security, I want
the permissions on this file to be set to 0600.

The problem is that I also want to support the svn+ssh:// scheme. But, when
I try to use ssh to access the repository, SVN complains that it can't read
the passwd file -- no kidding, I certainly don't want everyone who can log
in via SSH (or, to be precise, those in the "svn" group) to also be able to
read all of the subversion credentials.

Is there any way around this? I certainly think this is a bug, as SVN should
not have to read the passwd file if the user is already authenticated via
SSH.

Thanks.

Kristian

---------------------------------------------------------------------
To unsubscribe, e-mail: dev-unsubscribe@subversion.tigris.org
For additional commands, e-mail: dev-help@subversion.tigris.org
Received on Mon Nov 13 07:16:07 2006

This message: [ Message body ]
Next message: Ph. Marek: "Re: Question regarding svn_ra_do_update()"
Previous message: Ben Collins-Sussman: "1.4.2 win32 binaries?"
Next in thread: Marcus Rueckert: "Re: passwd file permissions with svn+ssh"
Reply: Marcus Rueckert: "Re: passwd file permissions with svn+ssh"

Contemporary messages sorted: [ By Date ] [ By Thread ] [ By Subject ] [ By Author ] [ By messages with attachments ]