[svn.haxx.se] · SVN Dev · SVN Users · SVN Org · TSVN Dev · TSVN Users · Subclipse Dev · Subclipse Users · this month's index

Re: Write Permission on repository may encourage UNIX user to tamper with repository (SSH)

From: John Peacock <john.peacock_at_havurah-software.org>
Date: Thu, 15 May 2008 09:50:20 -0400

Sachidanand Shukla wrote:
> my problem is that i create a login for user on solaris box and ask him
> to access repository from Windows client, but as user has access to
> solaris box also (as his login is created there and repositories also
> reside there) he can temper with repositries because he belongs to the
> group to which repository belongs.

Please don't crosspost to both users and dev lists; this question has
nothing to do with the development of Subversion itself, but rather is
about usage of the software itself.

There is no reason to give all of the users actual logins on the Solaris
box. This FAQ entry should help you:

http://subversion.tigris.org/faq.html#ssh-svnserve-location

plus this discussion:

http://svn.collab.net/repos/svn/trunk/notes/ssh-tricks

should give you some more background and tips. This does require a
slightly higher level of hands-on management when adding users, but is a
much more secure way to structure svnserve.

HTH

John

---------------------------------------------------------------------
To unsubscribe, e-mail: users-unsubscribe_at_subversion.tigris.org
For additional commands, e-mail: users-help_at_subversion.tigris.org
Received on 2008-05-15 15:50:48 CEST

This is an archived mail posted to the Subversion Users mailing list.

This site is subject to the Apache Privacy Policy and the Apache Public Forum Archive Policy.