Solved

SVN repository files are accessible in Apache for some reason...

Posted on 2013-11-05
2
414 Views
Last Modified: 2013-11-05
Hopefully this is a quick one.

I am setting up a new SVN Repository.  It's a brand new CentOS 6.4 server installed with the "Basic Server" option, and then I installed the subversion and mod_authz and some ldap packages.

My SVN home directory is /var/www/svn/, and my repository is called "mystuff", so the actual repository files are available at /var/www/svn/mystuff

My /etc/httpd/conf.d/subversion.conf is below:

LoadModule dav_svn_module     modules/mod_dav_svn.so
LoadModule authz_svn_module   modules/mod_authz_svn.so

<Location /repos>
   DAV svn
   SVNParentPath /var/www/svn

   AuthType Basic
   AuthName "Please login with your LDAP account details"
   AuthBasicProvider ldap
   AuthLDAPURL "(REDACTED)" NONE
   AuthLDAPBindDN "(REDACTED)"
   AuthLDAPBindPassword "(REDACTED)"
   Require ldap-group (REDACTED)
</Location>

Open in new window


When I go to http://xxx.xxx.xxx.xxx/repos/mystuff I successfully am prompted for authentication, and then I see the SVN repository.

Accessing the repository works as expected
HOWEVER, if I go to http://xxx.xxx.xxx.xxx/mystuff I am presented with the raw repository database files in the /var/www/svn/mystuff ! Without authentication!

Accidental access to the repository files

I'm totally stumped. I never specified anywhere in my config that this should be the case, I don't understand why I can access the repository files directly like that. And I'm sure it's a security issue.

Anybody know what's going on?

-Gordon
0
Comment
Question by:Frosty555
  • 2
2 Comments
 
LVL 31

Accepted Solution

by:
Frosty555 earned 0 total points
ID: 39625208
Okay I was just stupid...

In a previous failed attempt, I accidentally called "svnadmin create" and make an empty SVN repository called "mystuff" in the /var/www/html/ folder.

It's amazing how just writing out the question and posting it here helped me come to the answer. Rubber duck debugging, huh?
0
 
LVL 31

Author Closing Comment

by:Frosty555
ID: 39625212
see comments above
0

Featured Post

Simple, centralized multimedia control

Watch and learn to see how ATEN provided an easy and effective way for three jointly-owned pubs to control the 60 televisions located across their three venues utilizing the ATEN Control System, Modular Matrix Switch and HDBaseT extenders.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

If you have a server on collocation with the super-fast CPU, that doesn't mean that you get it running at full power. Here is a preamble. When doing inventory of Linux servers, that I'm administering, I've found that some of them are running on l…
If you've heard about htaccess and it sounds like it does what you want, but you're not sure how it works... well, you're in the right place. Read on. Some Basics #1. It's a file and its filename is .htaccess (yes, with a dot in the front). #…
Connecting to an Amazon Linux EC2 Instance from Windows Using PuTTY.
This demo shows you how to set up the containerized NetScaler CPX with NetScaler Management and Analytics System in a non-routable Mesos/Marathon environment for use with Micro-Services applications.

749 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question