Re: Write Permission on repository may encourage UNIX user to tamper with repository (SSH)

From: John Peacock <john.peacock_at_havurah-software.org>
Date: Thu, 15 May 2008 09:50:20 -0400

Sachidanand Shukla wrote:
> my problem is that i create a login for user on solaris box and ask him
> to access repository from Windows client, but as user has access to
> solaris box also (as his login is created there and repositories also
> reside there) he can temper with repositries because he belongs to the
> group to which repository belongs.

Please don't crosspost to both users and dev lists; this question has
nothing to do with the development of Subversion itself, but rather is
about usage of the software itself.

There is no reason to give all of the users actual logins on the Solaris
box. This FAQ entry should help you:

http://subversion.tigris.org/faq.html#ssh-svnserve-location

plus this discussion:

http://svn.collab.net/repos/svn/trunk/notes/ssh-tricks

should give you some more background and tips. This does require a
slightly higher level of hands-on management when adding users, but is a
much more secure way to structure svnserve.

HTH

John

---------------------------------------------------------------------
To unsubscribe, e-mail: users-unsubscribe_at_subversion.tigris.org
For additional commands, e-mail: users-help_at_subversion.tigris.org
Received on 2008-05-15 15:50:48 CEST

This message: [ Message body ]
Next message: Hari Kodungallur: "Re: pre-commit hooks does not show any output"
Previous message: prakash tiwary: "pre-commit hooks does not show any output"
In reply to: Sachidanand Shukla: "Write Permission on repository may encourage UNIX user to tamper with repository (SSH)"

Contemporary messages sorted: [ by date ] [ by thread ] [ by subject ] [ by author ] [ by messages with attachments ]