Re: git dangerous operations on alioth
Stefano Zacchiroli <zack <at> debian.org> writes:
> Related to this, there is also the risk that a user will ssh on alioth
> and rm the repository (accidentally or not). Do we have any kind of
> protection against that? (e.g. backups we can access to without
> bothering the alioth admins, or a way to give git access but not ssh
> access, or...)
anonssh can help lower the chance of that:
(this link is wrapped; GMane would not allow me to post otherwise,
just remove the newline after the question mark)
It does allow sftp though… both by design.
(This version does SFTP, git and svn; the one in MirBSD does cvs and rsync;
extending it is pretty easy.)
SFTP and rsync can, arguably, remove a repository. With malintent.
But then, it’s a #ifdef…
Maybe permit rsync only for some anonymous user, so only receiving but
not writing is enabled… you can easily install varying anonssh flavours
(and put them into the allowed shells table in the gforge database).