Attacker may gain access to restricted source
|Reported by:||Owned by:||Jonas Borgström|
If an attacker can guess the path to a source file within a svn repository it is possible for him to view the file without the proper permissions.
For example, say that on your trac site you restrict access so that only the user 'me' can browse source code. Your trac site is at http://www.ATracSite.tld. If there is a file README.txt in the root of your svn repository that is linked to this site, it could be accessed via visiting http://www.ATracSite.tld/file/README.txt even if the user is not authenticated as 'me'.
This may be of diminished concern since an attacker would need to guess the name for every file within your repository that he wishes to access. However, if changesets are visible in the timeline view, it is much easier for an attacker to guess these paths. Stricter security is always a good thing.