[svn.haxx.se] · SVN Dev · SVN Users · SVN Org · TSVN Dev · TSVN Users · Subclipse Dev · Subclipse Users · this month's index

Write Permission on repository may encourage UNIX user to tamper with repository (SSH)

From: Sachidanand Shukla <shukla.68_at_gmail.com>
Date: Thu, 15 May 2008 16:26:33 +0530

Hi,

I am a clearcase administrator with NCR Corp. and am currently persuing
migration of Clearcase code to SVN.
I am using svn+ssh to access repositories on Windows clients and server is
on Solaris box.
my problem is that i create a login for user on solaris box and ask him to
access repository from Windows client, but as user has access to solaris box
also (as his login is created there and repositories also reside there) he
can temper with repositries because he belongs to the group to which
repository belongs.
i tried a lot but could not succeed in protecting it.
I have configured svnserv (text file) to mask the repository path amnd URL
does not disclose full path, but even then....
i tried
1. Restricted shell
2. chroot is not possible as server is being used by other teams also
3. changed .profile etc etc.
but all in vain.

please suggest some way to solve this problem

Sachidanand Shukla
Received on 2008-05-15 15:03:37 CEST

This is an archived mail posted to the Subversion Dev mailing list.