[svn.haxx.se] · SVN Dev · SVN Users · SVN Org · TSVN Dev · TSVN Users · Subclipse Dev · Subclipse Users · this month's index

Not storing passwords in the filesystem

From: Gerald Richter <richter_at_ecos.de>
Date: 2002-06-22 16:12:19 CEST

Hi,

until now I have used svn only on the LAN and didn't used any authetication.
Now I have made a repository available to the internet and secured it with
passwords. This works fine, but when I done any operations now my password
is stored for every subdirectory in cleartext in the filesystem. While this
is ok for a secure machine, this is a big security whole when doing a
checkout etc. on machine that is used by many people or is accessable via
the net.

I didn't find anyway to delete these passwords (ok I can do a find -name
password -exec rm {} \; ), but this isn't very convenient. So my questions
is, is there a way to not store passwords at all, so I get asked anytime I
access the repository, or at least is there a way to logout and delete the
password.

I know svn is still pre-alpha, so I just want to know the state of this
issue and if there are any plans/features I have overseen already

Gerald

-------------------------------------------------------------
Gerald Richter ecos electronic communication services gmbh
Internetconnect * Webserver/-design/-datenbanken * Consulting

Post: Tulpenstrasse 5 D-55276 Dienheim b. Mainz
E-Mail: richter@ecos.de Voice: +49 6133 925131
WWW: http://www.ecos.de Fax: +49 6133 925152
-------------------------------------------------------------

---------------------------------------------------------------------
To unsubscribe, e-mail: dev-unsubscribe@subversion.tigris.org
For additional commands, e-mail: dev-help@subversion.tigris.org
Received on Sat Jun 22 16:10:45 2002

This is an archived mail posted to the Subversion Dev mailing list.

This site is subject to the Apache Privacy Policy and the Apache Public Forum Archive Policy.