Why is `~/.hgrc` a remote security hole when checked in?

Sam Steingold sds at gnu.org
Tue Oct 15 13:29:11 UTC 2013


> * Dirk Heinrichs <quf at erpbzzvaq.pbz> [2013-10-15 07:42:23 +0200]:
>
> Am 14.10.2013 23:45, schrieb Sam Steingold:
>
>> I was told on http://bz.selenic.com/show_bug.cgi?id=3147
>> that `~/.hgrc` is a remote security hole when checked in.
>
> Being a security hole or not, it's considered bad habit to mess with
> users config files. If you want to provide a default configuration for
> everyone, /etc is the place to put it in.

I should have made this clear:

I keep my $HOME under version control - to both keep the change history
and facilitate config sync between the machines I use.

The repo is hosted on my home linux box. I am the admin there.
It is used from a few other boxes (linux and otherwise) which I also
administer.

Sorry.

-- 
Sam Steingold (http://sds.podval.org/) on Ubuntu 12.04 (precise) X 11.0.11103000
http://www.childpsy.net/ http://ffii.org http://americancensorship.org
http://mideasttruth.com http://palestinefacts.org http://www.memritv.org
What was the best thing before sliced bread?



More information about the Mercurial mailing list