[svn.haxx.se] · SVN Dev · SVN Users · SVN Org · TSVN Dev · TSVN Users · Subclipse Dev · Subclipse Users · this month's index

Re: Advice need: making svn "secure"

From: David Tonhofer <d.tonhofer_at_m-plify.com>
Date: 2007-01-08 00:57:30 CET

Jan Erik Mostrm wrote:
> I'm setting up a couple of repositories for my own personal use, since
> I'm going to have some personal documents on those I would like to
> keep them reasonable secure.
>
> The repositories are going to live on a linux server in my home and
> I'm going to access the repositories from a limited number of
> computers ... all with static IP addresses.
>
> Previously I've just used svnserve (for other stuff) since it's was
> easy to set up. But now I don't know if it's a good solution, so I
> would be very interested in some advice if I should use:
>
> + svnserve
> + apache
> + svn+ssh
>
> Note: that I'm probably the only one who is ever going to access these
> repositories.
>
>

You are looking for

- An encrypted parition with the svn repository on it (best with "fsfs"
repository in that case
   I would guess - anyone have experience?)
- "snvserve + SSH", which is very easy to set up and very secure as long
as your SSH
   client machine has not been compromised.
   It's similar to "apache+SSL+WebDAV/DeltaV" but easier to configure,
and you evade the
   potential trouble of a misconfigured Apache.
- And the usual stuff for securing your system: packetfilter, restricted
users, tripwire .. the works.

Best regards,

-- David

---------------------------------------------------------------------
To unsubscribe, e-mail: users-unsubscribe@subversion.tigris.org
For additional commands, e-mail: users-help@subversion.tigris.org
Received on Mon Jan 8 00:56:45 2007

This is an archived mail posted to the Subversion Users mailing list.