[svn.haxx.se] · SVN Dev · SVN Users · SVN Org · TSVN Dev · TSVN Users · Subclipse Dev · Subclipse Users · this month's index

RE: SSH passphrase

From: Russel Winder <russel_at_russel.org.uk>
Date: 2005-10-28 10:04:58 CEST

Alex,

On Thu, 2005-10-27 at 22:35 +0200, Alexander Kitaev wrote:
> Hello Russel,

> To unstore saved credentials you only may delete keyring file. This will
> also remove all other information saved in the keyring file. As far as I
> know, CVS plugin also uses to store credentials.

OK so deleting the file is the only way but I have to be aware of
knock-on consequences. Knowledge is power :-)

It seems then that an installation of Eclipse is by default storing
individual users information centrally. Where there is only a single
individual using an installation then no problem. However, if Eclipse
is installed so that many users of a machine share an installation there
could in principle be problems.

Certainly there is "plug-in pollution" (not necessarily bad but...) --
because the plug-ins are stored centrally if a person updates or
installs a new plug-in then everyone gets the plug-in and this can (in
principle) cause problems.

> > 2. Where is the passphrase kept? It used to be in
> > ~/.subversion/auth/svn.ssh but isn't any longer -- I just
> > need to check security issues.
> This location is no longer used when JavaSVN is used within Eclipse (e.g.
> with Subclipse).
> Default location for keyring file is
> ECLIPSE_HOME/configuration/org.eclipse.core.runtime/.keyring

Mark pointed me at that location and I found it. It seems to be a
binary file so I guess there is a tool for managing the file somewhere?

> Eclipse supports command line options that allows to specify different
> location for keyring file as well as password to encrypt keyring file with.
> You may find this options and some other information on keyring file in
> built-in Eclipse help.

Mark put me on to those but it was already too late!

I assume IBM or someone has tested using X to run several instances of
Eclipse on the same machine and so have sorted out all the deadlock /
livelock issues of using a central repository such as the keyring? 

-- 
Russel.
====================================================
Dr Russel Winder                +44 20 7585 2200
41 Buckmaster Road              +44 7770 465 077
London SW11 1EN, UK             russel@russel.org.uk

Received on Fri Oct 28 18:04:58 2005

This is an archived mail posted to the Subclipse Users mailing list.