I am trying to understand the differences in terms of security of a subversion repository between regular svn: // and svn + ssh: // access.
I installed my subversion repository in the user port and ip address and opened the same port on the firewall and configured the repository with access only to authenticated users.
From what I could understand, subversion svn: // access connects through the subversion port, while svn + ssh: // connects to the ssh port to create a tunnel on the server (similar to using PuTTY).
I assume that using for svn + ssh is an added added security of not having an svn port open to the world, or am I missing something else?
EDIT: How is the svn + ssh: // command different than opening the PuTTY tunnel on my server and using svn: // localhost / repository instead? I read several articles on how to get subversion to get svn + ssh to work in windows, but I can't fully understand. Opening a tunnel with PuTTY works fine, but I have to remember that I open it first before calling svn: // localhost / repository.
source share