http://blog.isshen.com/articles/2006/12/16/how-to-do-http-ssh-with-subversion en-us 40 <p>Originally posted on a private mailing list.</p> <p>One of the consequences of having a mobile development station is being able to go to places such as <a href="http://www.panera.com">Panera's</a> or the local coffee shop to do development work. These days, it is trivially easy for people to get something similar to Kismet and do packet sniffing ... so I tend to proxy my internet connection through ssh. Fortunately, most of the GUI programs does this -- Firefox, Thunderbird, Gaim, Xchat2.</p> <p>Unfortunately, Subversion doesn't.</p> <p>We have it set up so that Subversion runs through Apache in order to take advantage of authenticating (but not authorizing) against a MySQL database. In this way, svn+ssh is not an option. However, the svn command line does not understand SOCKS4 or SOCKS5. This is where a transparent socks proxy comes in. I'm using something called <a href="http://proxychains.sourceforge.net/">proxychains</a>, though <a href="http://tsocks.sourceforge.net/">tsocks</a> is also available on the internet. You set it up by writing into ~/.proxychains/proxychains.conf with:</p> <blockquote> <p>DynamicChain<br/> tcp_read_time_out 15000<br/> tcp_connect_time_out 10000<br/></p> <p>[ProxyList]<br/> socks5 127.0.0.1 1080</p> </blockquote> <p>and then you have two methods for accessing it. For svn commands, you can do:</p> <blockquote> <p>proxychain svn ls http://svn.mydomain.com/project/trunk/</p> </blockquote> <p>but I prefer just setting the environment variable,</p> <blockquote> <p>export LD_PRELOAD=/usr/lib/libproxychains.so</p> </blockquote> <p><strong>Update 2007-07-22</strong>: I now put in my .bashrc file alias svn="proxychains svn" and alias svk="proxychains svk"</p> <p>The library intercepts TCP connect calls and reroutes them through a socks proxy. Transparent, effect, ... and kinda scary, considering how easy it is to replace DLL calls like that. In any case, although I did this mainly because I have a laptop and <a href="http://www.panera.com">Panera's</a> uses an http proxy, I think I'll need to do this for my workstation as well. Then require a proxy to access the Subversion server.</p> <h2>References:</h2> <p><ul> <li><a href="http://blog.isshen.com/articles/2007/07/27/svn-http-via-ssh-from-xp">How to do HTTP+SSH with Subversion on Windows</a></p> Sat, 16 Dec 2006 08:30:00 -0600 urn:uuid:d4ea5845-496b-49c9-a350-132c6e33dbf1 Hosh http://blog.isshen.com/articles/2006/12/16/how-to-do-http-ssh-with-subversion Subversion/SVK svk svn proxychains socks5 linux tools