[svn.haxx.se] · SVN Dev · SVN Users · SVN Org · TSVN Dev · TSVN Users · Subclipse Dev · Subclipse Users · this month's index

Re: svnserve alternate authentication

From: Andrew Thompson <subversionuser_at_aktzero.com>
Date: 2005-03-08 22:16:23 CET

Robert Hunter wrote:
> I've never used svnserve so I could be way off-base here, but it sounds to
> me like PAM would be a sensible mechanism to leverage here.

On a *nix box, are local user accounts still required if PAM is used?
(/me doesn't PAM)

> If you were using svn+ssh, then you could just make sure that SSH is
> using PAM authentication. I guess svnserve currently does *not* support
> PAM -- is it using some kind of "built-in" authentication mechanism
> provided by the APR? If it is, then perhaps it would be possible to patch
> APR to use PAM where available?

svnserve only has the permissions that are available to it from the user
it is running as. When you run svnserve as a daemon, it runs as whatever
user you set it to, or that by default runs your daemons. When you call
svn via a svn+ssh:// url, svnserve is run with the credentials of the
user that authenticated the ssh connection(you, or your authroized
repository users).

Andrew Thompson
Interested in hosted SVN repositories? Email me, let's talk...
To unsubscribe, e-mail: users-unsubscribe@subversion.tigris.org
For additional commands, e-mail: users-help@subversion.tigris.org
Received on Tue Mar 8 22:18:50 2005

This is an archived mail posted to the Subversion Users mailing list.

This site is subject to the Apache Privacy Policy and the Apache Public Forum Archive Policy.