[csw-maintainers] Subversion on bender

Ben Walton bwalton at opencsw.org
Sun Jul 26 20:40:57 CEST 2009


Excerpts from Dagobert Michelsen's message of Sun Jul 26 14:18:59 -0400 2009:
> With Subversion you explicitly add files once. When you
> commit you automatically commit only added files.

Also, you can explicitly add the file to an ignore list so that you'd
have to intentionally circumvent the vcs package to add/commit the
file.

> BTW, you could also restrict access to the DB to localhost.

...And a user that is limited to SELECT() (read only) would also go a
long way toward securing the access.  Even with access limited to
localhost, SQL injection with a read/write account is still a threat.
Let MySQL remove that threat (barring bugs in it's ACL enforcement)
for you.

-Ben
-- 
Ben Walton
Systems Programmer - CHASS
University of Toronto
C:416.407.5610 | W:416.978.4302

GPG Key Id: 8E89F6D2; Key Server: pgp.mit.edu
Contact me to arrange for a CAcert assurance meeting.
-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 189 bytes
Desc: not available
URL: <http://lists.opencsw.org/pipermail/maintainers/attachments/20090726/af340507/attachment-0002.asc>


More information about the maintainers mailing list