I have been reading about the security settings for 'anonymous' user, including
this
post
http://forums.jfrog.org/User-anonymous-is-not-permitted-to-deploy-into-repo1-cache-td3832350.html
which
suggest to set the 'deploy' to the repository caches for anonymous.
My question is whether this constitutes a security risk. It seems yes; anyone
can deploy into the caches. On the other hand, the caches are just that;
caches.
The internal repositories are still 'save'.
Opinions?
Thanks,
Villemos
------------------------------------------------------------------------------
Nokia and AT&T present the 2010 Calling All Innovators-North America contest
Create new apps & games for the Nokia N8 for consumers in U.S. and Canada
$10 million total in prizes - $4M cash, 500 devices, nearly $6M in marketing
Develop with Nokia Qt SDK, Web Runtime, or Java and Publish to Ovi Store
http://p.sf.net/sfu/nokia-dev2dev
_______________________________________________
Artifactory-users mailing list
[email protected]
https://lists.sourceforge.net/lists/listinfo/artifactory-users
