[svn.haxx.se] · SVN Dev · SVN Users · SVN Org · TSVN Dev · TSVN Users · Subclipse Dev · Subclipse Users · this month's index

Re: Sander, we're planning SSL on svn.collab.net soon...

From: Greg Stein <gstein_at_lyra.org>
Date: 2002-08-13 22:11:52 CEST

On Tue, Aug 13, 2002 at 02:30:59PM -0500, Karl Fogel wrote:
> Timothee Besset <ttimo@idsoftware.com> writes:
> > I suppose you will want to have the SSL certifcate signed by a
> > certificate authority and you don't want to sign it yourself?
> Actually, we're doing this more to help people get around
> uncooperative proxies than for real security.

And a verifiable certificate is for *authentication*, not for encryption. We
can self-sign a certificate and get the same level of strong encryption. So
we *will* have "real security" in the sense of "real encryption."

We just won't be using the associated certificate for authenticating that
we're talking to the "right" server.


Greg Stein, http://www.lyra.org/
To unsubscribe, e-mail: dev-unsubscribe@subversion.tigris.org
For additional commands, e-mail: dev-help@subversion.tigris.org
Received on Tue Aug 13 22:08:12 2002

This is an archived mail posted to the Subversion Dev mailing list.

This site is subject to the Apache Privacy Policy and the Apache Public Forum Archive Policy.