#99: Trac reports "Insufficient permissions" when using fine-grained permissions
Solved!
I have a Ubuntu-based Trac installation covering two SVN repositories. Having to share a single Subversion repository with different teams, who shouldn't have access to the other team's code, I had to activate fine-grained permissions using htpasswd and mod_authz_svn...
#6: SVN directory is viewable through Apache
Solved!
Contents of .svn directories, when located under an Apache web root, are viewable via a browser. This leads to potential exploits, as referenced by Adam Gotterer.
The hack obviously starts in .svn directory, specifically at the entries file. You can access...