[darcs-devel] [issue923] wishlist bug: enable using darcs securely via ssh

[John Meacham]

On Fri, Jun 13, 2008 at 03:17:55PM -0000, Johann Korndoerfer wrote:
> This is useful in a setting where several developers are to be granted
> pushing privileges on a repository, but are not trusted enough to be
> given full ssh access and using email is not desired.

One also needs to ensure darcs doesn't run any user submitted hooks. I
have thought it would be a nice feature for darcs to have a general
purpose '--untrusted' flag, which will disable anything that allows
execution of arbitrary code (all hooks, tests,  and whatnot). that way
we can pass just that one flag in scripts and not have to worry that
some other hook, test code,  or execution path will be added in the
future that we didn't explicitly disable.

        John

-- 
John Meacham - ⑆repetae.net⑆john⑈