Re: svn Farm

From: David Brodbeck <brodbd_at_uw.edu>
Date: Wed, 20 Oct 2010 16:30:35 -0700

On Fri, Oct 15, 2010 at 7:01 PM, Nico Kadel-Garcia <nkadel_at_gmail.com> wrote:
> No. system_auth is still the NFS standard for internal use in both
> academic and professional environments. auth_dh has uses, but it
> doesn't help against any machine with allocated or cracked local root
> access. This isn't your "local machine", it's the network wide home
> directory system, and there are plenty of them out there without even
> this step.

I don't doubt that, but my point is in this particular scenario there
are far bigger issues that render anything SVN does entirely moot.

If I have root access to the filesystem, it doesn't matter what SSH
does to try to encrypt the password, because I have full access to
your account. I can just change your PATH to point to my trojaned SVN
binary and grab your password that way, for example. There simply
isn't any level of precaution sufficient to protect you from a rogue
root user on a UNIX system.

I'm not saying there aren't situations where it's a good idea to have
SVN encrypt passwords, just that this isn't a very good example of
one. If people can boot a LiveCD and get root access to your NFS
shares, they already have the keys to the castle.

-- 
David Brodbeck
System Administrator, Linguistics
University of Washington

Received on 2010-10-21 01:31:14 CEST

This message: [ Message body ]
Next message: David Brodbeck: "Re: svn Farm"
Previous message: David Brodbeck: "Re: svn Farm"
In reply to: Nico Kadel-Garcia: "Re: svn Farm"
Next in thread: David Brodbeck: "Re: svn Farm"
Reply: David Brodbeck: "Re: svn Farm"

Contemporary messages sorted: [ by date ] [ by thread ] [ by subject ] [ by author ] [ by messages with attachments ]