Re: server config
From: Ben Reser <ben_at_reser.org>
Date: Mon, 19 Aug 2013 15:19:54 -0700
On 8/19/13 9:07 AM, Scott Frankel wrote:
I'd strongly urge you not to use 1.6.1, see the list of applicable
If you're using the CentOS packages they may have patched those issues
If you're setting a new server I wouldn't start with 1.6.x but would go
> I'm having difficulty with authorization &/or authentication: my repo appears to be accessible by anyone in spite of requiring "valid-user" and specifying digest authentication. I believe this because 1) I can download a full working copy of the repo to a 3rd-party logged into a foreign computer, and 2) I have dozens of entries in apache's logfiles, like these from this morning, *prior* to any known/legitimate access to my repos today:
That does indeed look like access without a user.
These however do not appear to be alarming at all. Neither of them are
> <Location /svn>
I'm not seeing anything wrong with this, so I'm not sure why you're
This is an archived mail posted to the Subversion Users mailing list.