Re: Secure svnserve?

From: Olaf van der Spek <ml_at_vdspek.org>
Date: Sat, 26 Nov 2016 17:15:12 +0100

On Sat, Nov 26, 2016 at 3:22 PM, Nico Kadel-Garcia <nkadel_at_gmail.com> wrote:
> On Fri, Nov 25, 2016 at 5:11 AM, Olaf van der Spek <ml_at_vdspek.org> wrote:
>> Hi,
>>
>> Currently I'm running svnserve on a Debian VM on my PC. I'd like to
>> move it to a server on the internet but I don't get how to do this
>> securely.
>> Svnserve doesn't support encryption, right, so I can't expose it on a
>> public port directly.
>
> svn+ssh works quite well, and gets *away* from the horrible, horrible

Doesn't svn+ssh require all accounts to have direct and full file
access to the entire repo?

>> I'm aware of Subversion via Apache but I don't run Apache and I don't
>> want to give the entire web server access to repos anyway.
>> I also don't want to give each SVN user a shell account..
>> What's the proper way to do this?
>>
>> Wouldn't it be good if svnserve supported encryption directly?
>>
>> --
>> Olaf
>
> See above. And yes, it might be useful, but integrating encryption
> into high performance can seriously destabilize it.

-- 
Olaf

Received on 2016-11-26 17:15:30 CET

This message: [ Message body ]
Next message: Branko Čibej: "Re: Secure svnserve?"
Previous message: James: "Re: SVN merge between branches is actually overwrite?"
In reply to: Nico Kadel-Garcia: "Re: Secure svnserve?"
Next in thread: Branko Čibej: "Re: Secure svnserve?"
Reply: Branko Čibej: "Re: Secure svnserve?"

Contemporary messages sorted: [ by date ] [ by thread ] [ by subject ] [ by author ] [ by messages with attachments ]