[svn.haxx.se] · SVN Dev · SVN Users · SVN Org · TSVN Dev · TSVN Users · Subclipse Dev · Subclipse Users · this month's index

Re: SVN Security

From: Nathan Kidd <nathan-svn_at_spicycrypto.ca>
Date: 2006-04-13 21:01:27 CEST

Timo Wendt wrote:
>> There is really not much that can be done against this. The file RA
>> method was written because it is a relatively simple RA (no
>> client/server logic involved), and because it provides a very simple
>> solution to users who want to version data in a single-user,
>> single-machine scenario.
>>
>> For more complex scenarios (multiple users, multiple network
>> locations), two server applications have been implemented. These can
>> be configured so that they are the only ones with direct access to the
>> repository storage area, so that they can enforce the security policy
>> given in the configuration.
> I understand what you mean. You are right when you say that users can
> still access the files locally if they have privileges.
> Is there probably a plan for using a real database system like Oracle or
> MySQL? This could probably somehow solve the problem.

Timo, you might be interested in the Simon Tatham's writup on how he
worked around the svn+ssh = direct local file access issue.
http://www.chiark.greenend.org.uk/~sgtatham/svn.html#S2

-Nathan

---------------------------------------------------------------------
To unsubscribe, e-mail: users-unsubscribe@subversion.tigris.org
For additional commands, e-mail: users-help@subversion.tigris.org
Received on Thu Apr 13 21:02:35 2006

This is an archived mail posted to the Subversion Users mailing list.

This site is subject to the Apache Privacy Policy and the Apache Public Forum Archive Policy.