>> Furthermore, in light of comments on the debian list, I just >> disallowed --editor-cmd, --diff-cmd, and --config-dir... but that still >> doesn't help with the editor cmd and diff cmd being specified in config >> files.
--diff3-cmd is problematic, too. For rsync, you need to disable daemon mode (at the very least). The security guide must mention that you need to lock down ~/.subversion, ~/.ssh, ~/.unison and maybe a few more directories. -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
