Bill Sommerfeld wrote: > On Wed, 2008-07-16 at 13:37 -0700, Stephen Lau wrote: >> I would really recommend using ssh instead of NFS. >> >> You can also put: >> [trusted] >> groups=other >> >> in your ~/.hgrc to get that noise to go away > > please don't. > > this is, IMHO, a really bad idea. > > a trusted hgrc in a workspace can specifying the full path to things > like mercurial extensions. > > I have > > [trusted] > groups=other > > in my ~/.hgrc, and I do an "hg log" on someone's workspace that's owned > by group other, mercurial could execute arbitrary code based on the > contents of that workspace's hgrc. > > It's better to just ignore the warning. > > there should be some way to encode "workspace parent" in a workspace > that doesn't involve the full generality of the hgrc...
If you're talking about a workspace specific configuration: workspace/.hg/hgrc -- Shawn Walker _______________________________________________ tools-discuss mailing list tools-discuss@opensolaris.org
