[svn.haxx.se] · SVN Dev · SVN Users · SVN Org · TSVN Dev · TSVN Users · Subclipse Dev · Subclipse Users · this month's index

Re: ssh based access?

From: Greg Stein <gstein_at_lyra.org>
Date: 2002-04-18 21:18:09 CEST

On Thu, Apr 18, 2002 at 08:15:05PM +0200, Peter Mathiasson wrote:
> On Thu, Apr 18, 2002 at 01:35:53PM -0400, Scott Lenser wrote:
> > machine to be encrypted. It could just be my general lack of understanding of
> > exactly how certificates are done, but I gave up after I add made what I thought
> > was a valid certificate and compiled apache with ssl support and then went to
> > try it and got nothing. Non-ssl connections could be used fine. I think any
>
> Subversion does not yet support verification of certificates, so using
> ssl (directly) with it is quite useless. If you need SSL right now, I
> would recommend tunneling it using stunnel (www.stunnel.org).

While it may not support server or client cert verification, it does support
SSL. That will prevent snooping, even if it might not prevent MITM or
similar attacks.

In other words, SVN *can* be used with SSL *today*. We just have some more
work to do, to increase the authentication security.

Cheers,
-g

-- 
Greg Stein, http://www.lyra.org/
---------------------------------------------------------------------
To unsubscribe, e-mail: dev-unsubscribe@subversion.tigris.org
For additional commands, e-mail: dev-help@subversion.tigris.org
Received on Thu Apr 18 21:18:20 2002

This is an archived mail posted to the Subversion Dev mailing list.