[svn.haxx.se] · SVN Dev · SVN Users · SVN Org · TSVN Dev · TSVN Users · Subclipse Dev · Subclipse Users · this month's index

Re: sasl question

From: Ben Collins-Sussman <sussman_at_red-bean.com>
Date: 2007-11-25 16:53:14 CET

CRAM-MD5 is 'deprecated? How so?

Also, in your notes/sasl.txt file, you discuss how to require protocol
encryption. How is encryption being done? Via openssl? And if so,
does this require both server and client SASL libraries to be linked
against openssl?

On Nov 25, 2007 9:44 AM, Vlad Georgescu <vgeorgescu@gmail.com> wrote:
>
> Ben Collins-Sussman wrote:
> > Hey Vlad:
> >
> > If I configure my SASL 'subversion.conf' file to contain the line
> > 'mech_list: FOO', how does this interact with svnserve's inherent
> > ability to do ANONYMOUS and CRAM-MD5 mechanisms? In other words, is
> > CRAM-MD5 still advertised to the client as an option, along with
> > mechanism FOO? Or is only FOO offered?
> >
>
> Only FOO is offered. That's a good thing, because people might want to
> disallow CRAM-MD5, which is a deprecated mechanism.
>
> --
> Vlad
>

---------------------------------------------------------------------
To unsubscribe, e-mail: dev-unsubscribe@subversion.tigris.org
For additional commands, e-mail: dev-help@subversion.tigris.org
Received on Sun Nov 25 16:53:23 2007

This is an archived mail posted to the Subversion Dev mailing list.