Ben Collins-Sussman <sussman@collab.net> wrote on 01/12/2005 10:01:09 AM:
> On Jan 12, 2005, at 5:50 AM, Norbert Unterberg wrote:
>
> > Ben Collins-Sussman schrieb:
> >
> >> If mod_authz_svn isn't being used at all, then the directive
> >> SVNPathAuthz off
> >> ... will disable these security checks completely, and there should
> >> be a large speedup.
> >
> > By the way, what happens if you set that switch and use the
> > mod_auth_svn?
>
> That switch turns off all security checks in mod_dav_svn. Which means
> that mod_authz_svn is rendered completely nonfunctional and useless.
I do not think that is true at all. With this switch off you still get
the fine-grained read/write control which is what I think most people
want. What the switch seems to do is turn off the feature that was added
to log where it does a get on each item in the log to check that you are
authorized to see that the item was changed. Personally, I am willing to
live with this security "hole". People still cannot checkout or commit to
protected paths.
Mark
_____________________________________________________________________________
Scanned for SoftLanding Systems, Inc. by IBM Email Security Management Services powered by MessageLabs.
_____________________________________________________________________________
---------------------------------------------------------------------
To unsubscribe, e-mail: users-unsubscribe@subversion.tigris.org
For additional commands, e-mail: users-help@subversion.tigris.org
Received on Wed Jan 12 16:16:14 2005