Comments (3)
jernsting
commented on September 26, 2024
1
The main problem is the security of the system. If you upload private and public keys to a system used by multiple users, then a little bug in any installed program, that allows file system access would give an attacker all ssh keys with access to all repositories.
I would even recommend not using the solution with a ssh key for the apache user, because of the same security risk. In this setup using git with https is the most secure solution, that I could think of.
The only approach to securely do this - in my opinion - is to crypt the ssh keys with the user password to make it at least harder to access the ssh keys. If this is an idea you are agreed with, I would like to implement this. But this could take some time... But as this ticket is from 2016, I think some more time would not be a big issue :-)
from codiad-codegit.
Andr3as
commented on September 26, 2024
I know what you mean. The current solution has one ssh key for the apache user, so every Codiad user has to use this key. Maybe if I find some time to took a deeper look at the authentication with ssh keys.
from codiad-codegit.
Andr3as
commented on September 26, 2024
π Feel free to create a pull request. As you see, lately I do not have that much time myself.
from codiad-codegit.
Related Issues (20)
- Commit messages shouldn't escape ()
- Push action "Hangs" HOT 1
- Pushing/Pulling to/from local remote branch causes crash HOT 2
- Bitbucket Support HOT 7
- βPlease install shell program!β error on FreeBSD
- Undefined variable 'new_path' HOT 1
- how do i setup pexpect to use with codiad HOT 2
- non-latin commit mesage HOT 2
- Corrupted git strings HOT 2
- Git crashes ide HOT 1
- Feature Request - Add git oblivious mode HOT 1
- Permission change on git push HOT 2
- Please install shell program! HOT 3
- Error: "Warning: session_start(): Cannot send session cache limiter" HOT 2
- codiad says commits are being successfully pushed, but they're not HOT 5
- "Please install shell program" with both Expect and pexpect HOT 1
- Use Git.php for better security HOT 2
- problem with merge
- SSH access?
- occasionally falsely says "Failed to push"
Recommend Projects
-
React
A declarative, efficient, and flexible JavaScript library for building user interfaces.
-
Vue.js
π Vue.js is a progressive, incrementally-adoptable JavaScript framework for building UI on the web.
-
Typescript
TypeScript is a superset of JavaScript that compiles to clean JavaScript output.
-
TensorFlow
An Open Source Machine Learning Framework for Everyone
-
Django
The Web framework for perfectionists with deadlines.
-
Laravel
A PHP framework for web artisans
-
D3
Bring data to life with SVG, Canvas and HTML. πππ
-
Recommend Topics
-
javascript
JavaScript (JS) is a lightweight interpreted programming language with first-class functions.
-
web
Some thing interesting about web. New door for the world.
-
server
A server is a program made to process requests and deliver data to clients.
-
Machine learning
Machine learning is a way of modeling and interpreting data that allows a piece of software to respond intelligently.
-
Visualization
Some thing interesting about visualization, use data art
-
Game
Some thing interesting about game, make everyone happy.
Recommend Org
-
Facebook
We are working to build community through open source technology. NB: members must have two-factor auth.
-
Microsoft
Open source projects and samples from Microsoft.
-
Google
Google β€οΈ Open Source for everyone.
-
Alibaba
Alibaba Open Source for everyone
-
D3
Data-Driven Documents codes.
-
Tencent
China tencent open source team.
from codiad-codegit.