[svn.haxx.se] · SVN Dev · SVN Users · SVN Org · TSVN Dev · TSVN Users · Subclipse Dev · Subclipse Users · this month's index

Re: Query on SVN+SSH

From: Sahadeo Raskonda <snraskonda_at_gmail.com>
Date: 2007-07-12 17:22:02 CEST

svn+ssh works for me if I have wrapper script like
1) I rename /usr/bin/svnserve to /usr/bin/svnserve.bin
2) Create a shell script */usr/bin/svnserve* which has "*exec
/usr/bin/svnserve.bin -r /home/svn/repo "$@"* "

Now If I disable above script and have normal */usr/bin/svnserve* and
create as "/home/alice/.ssh/authorized_keys" file for alice's login with
belew entry.
command="/usr/bin/svnserve -t -r /repository/root
--tunnel-user=alice",no-port-forwarding,no-agent-forwarding,no-X11-forwarding,no-pty
TYPE1 KEY1 COMMENT1
I have proper file permissions for the authorized* file
It doesnot work somewhow as told in this link -->
http://svn.collab.net/repos/svn/trunk/notes/ssh-tricks

Thanks in ADvance,
REgards,
Saha

On 7/12/07, Jason Winnebeck <jpwasp@rit.edu> wrote:
>
> It appears to me that the link you have sent will work if your SSH server
> supports that (it should since you are using RHEL). I didn't know you could
> put these options in the authorized_keys file.
>
> Jason
>
> ________________________________________
> From: Sahadeo Raskonda [mailto:snraskonda@gmail.com]
> Sent: Thursday, July 12, 2007 10:53 AM
> To: Jason Winnebeck
> Subject: Re: Query on SVN+SSH
>
> Thanks a Million Jason...
> Further I was exploring
> http://svn.collab.net/repos/svn/trunk/notes/ssh-tricks
> But this doesnot work fine...any ideas on this ??#
> Thanks,
> Saha
>
>
>
> On 7/12/07, Jason Winnebeck <jpwasp@rit.edu> wrote:
> The disadvantage for SVN+SSH access is that the users need to have shell
> accounts. It might be possible to have some login shell jiggery to make it
> so they can't log in, but if you really want to have control you need to use
> a server. If you are concerned about security, HTTPS over Apache is your
> best bet, otherwise SVN protocol can work to prevent the need for shell
> accounts, but is not secure.
>
> Jason Winnebeck
>
> ________________________________________
> From: Sahadeo Raskonda [mailto:snraskonda@gmail.com]
> Sent: Thursday, July 12, 2007 9:57 AM
> To: users@subversion.tigris.org
> Subject: Query on SVN+SSH
>
>
>
> Dear Folks,
>
> Can anyone please help me on this ??
>
> I have installed SVN-1.4 on RHEL4 Box by RPM's
> Further configured SVN+SSH access by
> 1) Creating System users on the Box.
> 2) Wrapper script to embed svnserve
> Like all steps in http://svn.haxx.se/dev/archive-2004-03/0253.shtml
> and it works fine....
>
> But problem is users can logon onto Box and delete entire REPO !!!
>
> Further I was exploring
> http://svn.collab.net/repos/svn/trunk/notes/ssh-tricks
> But this doesnot work fine...
>
> Any ideas on How to configure svn+ssh which uses system users and no shell
> access to these users ??
>
> Thanks in Advance for your help,
> Regards,
> Saha
>
>
Received on Thu Jul 12 17:21:54 2007

This is an archived mail posted to the Subversion Users mailing list.