Dassi, Nasser wrote:
>
> I may have found something risky security and integrity-wise.
>
> Issue:
> The revision number with file-type FSFS is manually modifyable in any
> ol' text editor. The value (in a file within the repository's file
> structure) is stored in plain-text and can be edited with extreme ease.
>
> Potential risk:
> Whomever has access to the repository's directory (not via interfaces,
> but directly at file-system level) can easily modify and alter and
> possibly wipe clean the actual revision history.
Umm, I hate to break it to you, but they can do the same thing to any
system. It's the same with BDB, the files are binary, but if you know
what you're doing you can still modify them. As for detecting such
modifications, how would you do that? Store a checksum or something?
Where? If the user can modify the revision files they can also modify
the file you store the checksum of the revisions in... Once someone has
write access to the revision files you've already lost the battle, they
can essentially do whatever they want.
-garrett
---------------------------------------------------------------------
To unsubscribe, e-mail: users-unsubscribe@subversion.tigris.org
For additional commands, e-mail: users-help@subversion.tigris.org
Received on Wed Jan 26 22:15:57 2005