If a script or cronjob or whatever on the server has write access to the repo, s... | Hacker News

Hacker News new | past | comments | ask | show | jobs | submit

login

brobinson on June 15, 2016 | parent | context | favorite | on: My First 10 Minutes on a Server

If a script or cronjob or whatever on the server has write access to the repo, so does the hypothetical attacker.

I remember seeing a "hacking" website get wiped along with all of its backups about 15 years ago and it left a very strong impression on me regarding this issue.

jjnoakes on June 16, 2016 [–]

If it is write access but not delete access (nor overwrite access) then there is no issue.

It is sometimes more secure to push because it requires no inbound connections or authorizations the live machine.

Guidelines | FAQ | Lists | API | Security | Legal | Apply to YC | Contact