[svn.haxx.se] · SVN Dev · SVN Users · SVN Org · TSVN Dev · TSVN Users · Subclipse Dev · Subclipse Users · this month's index

RE: RE: Re: Is subversion SOX (sarbanes-oxley) compliant?

From: Robert Cronk <rcronk_at_altiris.com>
Date: 2005-09-07 19:04:00 CEST

> -----Original Message-----
> From: Goddard Lee [mailto:lee.goddard@easa.eu.int]
>
> > > (http://www.cve.mitre.org/cgi-bin/cvekey.cgi?keyword=SVN)
> > >
> > > As you can expect, managers want our SCM to be SOX compliant.
PVCS
> > > claims to be SOX compliant. Is subversion SOX compliant?
> >
> > This question is non-sensible, since SOX is not about what
> > products you use, but about the processes and controls in place.
> >
> > You can certainly be SOX compliant using Subversion, if you
> > wanted to. --Dan
>
> Have the issues on the above URI be addressed yet? If not, we're
certainly
> not going to be able to make our SVN public-facing :( Or I'm going to
> have to start learning SVN source code...

The SVN versions in some of those security issues are very old and I
have seen SVN releases since then that have "security" in their
descriptions, so I know some security issues have been addressed but I'm
not sure about those in particular. Perhaps some of the more
experienced SVN users or developers on this list could reply with more
detail.

---------------------------------------------------------------------
To unsubscribe, e-mail: users-unsubscribe@subversion.tigris.org
For additional commands, e-mail: users-help@subversion.tigris.org
Received on Wed Sep 7 19:05:53 2005

This is an archived mail posted to the Subversion Users mailing list.