Write Permission on repository may encourage UNIX user to tamper with repository (SSH)

From: Sachidanand Shukla <shukla.68_at_gmail.com>
Date: Thu, 15 May 2008 16:26:33 +0530

Hi,

I am a clearcase administrator with NCR Corp. and am currently persuing
migration of Clearcase code to SVN.
I am using svn+ssh to access repositories on Windows clients and server is
on Solaris box.
my problem is that i create a login for user on solaris box and ask him to
access repository from Windows client, but as user has access to solaris box
also (as his login is created there and repositories also reside there) he
can temper with repositries because he belongs to the group to which
repository belongs.
i tried a lot but could not succeed in protecting it.
I have configured svnserv (text file) to mask the repository path amnd URL
does not disclose full path, but even then....
i tried
1. Restricted shell
2. chroot is not possible as server is being used by other teams also
3. changed .profile etc etc.
but all in vain.

please suggest some way to solve this problem

Sachidanand Shukla
Received on 2008-05-15 15:03:37 CEST

This message: [ Message body ]
Next message: Sanjeev-3.Kumar-3_at_cognizant.com: "Error in creating RPM for Subversion."
Previous message: Senthil Kumaran S: "Re: [PATCH] Fix issue #2324"
Next in thread: Ben Collins-Sussman: "Re: Write Permission on repository may encourage UNIX user to tamper with repository (SSH)"
Reply: Ben Collins-Sussman: "Re: Write Permission on repository may encourage UNIX user to tamper with repository (SSH)"

Contemporary messages sorted: [ by date ] [ by thread ] [ by subject ] [ by author ] [ by messages with attachments ]