Re: secure svn

From: Andrey Repin <anrdaemon_at_freemail.ru>
Date: Wed, 16 Sep 2009 22:01:16 +0400

Greetings, Melanie Pfefer!

>> > I managed to secure a repo.
>>
>> > Is there a way to audit who accessed this repo?
>>
>> > Should I look into apache logs or svn can do this?
>>
>> If you're serving SVN out of Apache - configure Apache to
>> log SVN actions
>> separately.

> Now I am securing svn access using AuthzSVNAccessFile

> However, nothing prevents user from installing another apache server and access svn files.
> Nothing also prevents accessing svn files using file://

> Can you please give me some hints on how to further sevure svn

WHAT? WAIT, WHAAAT???????????
What you are explaining is just not possible, unless you have your server
opened for everyone with superadmin rights. Please hire a system
administrator, if you can't configure your servers yourself.

Also, please stop top-posting.

--
WBR,
 Andrey Repin (anrdaemon_at_freemail.ru) 16.09.2009, <21:59>
Sorry for my terrible english...
------------------------------------------------------
http://subversion.tigris.org/ds/viewMessage.do?dsForumId=1065&dsMessageId=2395669
To unsubscribe from this discussion, e-mail: [users-unsubscribe_at_subversion.tigris.org].

Received on 2009-09-16 20:05:56 CEST

This message: [ Message body ]
Next message: Hoffman, Derek A.: "Help: Apache2, Kerberos, AD, caching authentication?"
Previous message: Stefan Sperling: "Re: annoying "Attempt to add tree conflict that already exists""
In reply to: Melanie Pfefer: "Re: secure svn"

Contemporary messages sorted: [ by date ] [ by thread ] [ by subject ] [ by author ] [ by messages with attachments ]