Subversion

subversion apache setup

This is the svn related configuration in the ssl.conf.

The /disks/www/svn directory (repo) uses basic authentication, using /etc/subversion/svnpasswd file.

<Location /repos>
  DAV svn
  SVNParentPath /disks/www/svn
  SVNListParentPath on
  AuthType Basic
  AuthName "cehd svn dav"
  AuthUserFile /etc/subversion/svnpasswd
  Require valid-user
  <Limit GET POST PROPFIND OPTIONS PROPPATCH PUT MKCOL MOVE COPY DELETE LOCK UNLOCK REPORT MKACTIVITY        CHECKOUT MERGE>
    SSLRequireSSL
    Order deny,allow                                                                       
    Allow from all
  </Limit>
  <LimitExcept GET POST PROPFIND OPTIONS PROPPATCH PUT MKCOL MOVE COPY DELETE LOCK UNLOCK REPORT MKACTIVITY  CHECKOUT MERGE>
    Order deny,allow
    Deny from all
  </LimitExcept>
</Location>

To prevent .svn files from being shown to the public, this is added th httpd.conf. (This is a frequent item in firewall scan.)

<LocationMatch "/.svn/">

   order allow,deny
   deny from all

</LocationMatch>

Taxonomy: