I think you should put the directories with limited read access into a separate repository and branch. Some of the internal changes you name do go in this direction but I think it would be hard to have real confidence the data cannot be discovered if you don't partition it at the OS level. -- Martin <http://launchpad.net/~mbp/>