[svn.haxx.se] · SVN Dev · SVN Users · SVN Org · TSVN Dev · TSVN Users · Subclipse Dev · Subclipse Users · this month's index

security and file permissions

From: Steven S. Gubser <ssgubser_at_Princeton.EDU>
Date: 2007-03-29 19:34:02 CEST

Hi svn users,

I want to establish per-directory read-write access. I can
do this as per ch. 6 of the documentation. But I am running
everything on an svn+ssh basis, with the umask = 002 so
that every file in db/revs has permissions 664. Doesn't this
mean that any user with group r/w permissions can in
principle reconstruct everything in the repository, just by
grabbing all the files in db/revs?

What does it take to set up an svn repository where this
``loophole'' is closed and sensitive data is reasonably well
protected? Can anyone point me to a how-to document
or an example?

I apologize for a previous version of this message without
a descriptive subject header.

Thanks,
Steve

---------------------------------------------------------------------
To unsubscribe, e-mail: users-unsubscribe@subversion.tigris.org
For additional commands, e-mail: users-help@subversion.tigris.org
Received on Thu Mar 29 19:34:31 2007

This is an archived mail posted to the Subversion Users mailing list.

This site is subject to the Apache Privacy Policy and the Apache Public Forum Archive Policy.