Strange behaviour of mod_authz_svn
http://svnbook.red-bean.com/en/1.7/svn.serverconfig.pathbasedauthz.html :
By default, nobody has any access to the repository at all.
So you don't need to explicitly deny access for your paths.
I'd rewrite your config as follows:
[groups]g = hy[test:/]hy = r# Permissions are inherited from parent to child directory # and hy already has read access to the root of the repo and its subdirectories,# so this can be skipped:#[test:/subdir]#hy = r[test:/subdir1]hy = rw