Re: Fine and secure dining, was Re: svnadmin create and not being method agnostic

From: David Brodbeck <brodbd_at_uw.edu>
Date: Wed, 5 Jan 2011 11:04:06 -0800

On Mon, Jan 3, 2011 at 8:46 AM, Les Mikesell <lesmikesell_at_gmail.com> wrote:

> On 1/2/2011 9:43 PM, Nico Kadel-Garcia wrote:
>
>>
>> It's possible to do secure Subversion. Use svn+ssh access, disable or
>> block other services at the firewall,
>>
>
> If ssh is permitted and you didn't personally set it up, what are the odds
> that port tunneling or ssh's built in socks proxy will allow access to every
> service behind the firewall?
>

The nice thing about SSH is you can disable those things via server
configuration. They are on by default in most distributions (and maybe
shouldn't be) but the configuration switches to turn them off are easy to
find.

-- 
David Brodbeck
System Administrator, Linguistics
University of Washington

Received on 2011-01-05 20:04:45 CET

This message: [ Message body ]
Next message: Les Mikesell: "Re: Fine and secure dining, was Re: svnadmin create and not being method agnostic"
Previous message: David Brodbeck: "Re: svnadmin create and not being method agnostic"
In reply to: Les Mikesell: "Re: Fine and secure dining, was Re: svnadmin create and not being method agnostic"
Next in thread: Les Mikesell: "Re: Fine and secure dining, was Re: svnadmin create and not being method agnostic"
Reply: Les Mikesell: "Re: Fine and secure dining, was Re: svnadmin create and not being method agnostic"

Contemporary messages sorted: [ by date ] [ by thread ] [ by subject ] [ by author ] [ by messages with attachments ]