Re: ssh+svn vs. bash security bug?
From: Stefan Sperling <stsp_at_elego.de>
Date: Wed, 24 Sep 2014 19:28:51 +0300
On Wed, Sep 24, 2014 at 11:06:13AM -0500, Les Mikesell wrote:
In an svn+ssh setup svn clients run 'svnserve -t' by default.
Note that forcing a command in the authorized_keys file will *not*
It should be possible to mitigate this attack vector by having
|
This is an archived mail posted to the Subversion Users mailing list.
This site is subject to the Apache Privacy Policy and the Apache Public Forum Archive Policy.