Feature #17164: file:/// repository insecure - Redmine

Actions

Copy link

Feature #17164

closed

file:/// repository insecure

Added by John Pham almost 10 years ago. Updated over 9 years ago.

Status:

Closed

Priority:

Normal

Assignee:

Category:

SCM

Target version:

Start date:

Due date:

% Done:

Estimated time:

Resolution:

Duplicate

Description

Could there be a way to restrict file:/// URLs in repositories? If, SVN projects are accessible by the webserver (likely if using dav_svn) anyone with permissions to add a repository has unrestricted access to any repository on the webserver viewable by the server process, almost equivalent to filesystem access.

Related issues

History
Notes
Property changes

Actions

Copy link

Also available in: Atom PDF

Project

General

Profile

Redmine

Custom queries

Feature #17164

file:/// repository insecure

Updated by Go MAEDA almost 10 years ago

Updated by John Pham almost 10 years ago

Updated by Go MAEDA over 9 years ago

Updated by Jean-Philippe Lang over 9 years ago

Updated by Jean-Philippe Lang over 9 years ago

Updated by Jean-Philippe Lang over 9 years ago