[svn.haxx.se] · SVN Dev · SVN Users · SVN Org · TSVN Dev · TSVN Users · Subclipse Dev · Subclipse Users · this month's index

RE: [PATCH] default to --no-auth-cache

From: Sander Striker <striker_at_apache.org>
Date: 2003-01-14 01:36:44 CET

> From: Karl Fogel [mailto:kfogel@newton.ch.collab.net]
> Sent: Tuesday, January 14, 2003 12:49 AM

> Folks, this thread is spiralling down the Infinite Death Trap of
> Perfect Technical Correctness :-). Can we just assume this:
>
> Passwords are overwhelmingly likely to be sensitive data, and
> usernames are not. There may be times when the username is sensitive,
> for some people in some situations, but this is *extremely* rare and
> we do not need to optimize our interfaces for it. Furthermore, anyone
> who doesn't want to store their username will also not want to store
> their password. Therefore there is never any need to control the
> username separately.
>
> At this point I've lost track of all the flag/config combinations that
> have been proposed. But if Ryan posts a proposal that allows users to
>
> 1. Toggle username and password storing together, via a command
> line flag and via a config option.
>
> 2. Toggle *just* password storing, via a command line flag and via
> a config option.
>
> ...I will happily +1 it, and encourage you to do the same :-).

*untangles self from thread* +1 to that!

Sander

---------------------------------------------------------------------
To unsubscribe, e-mail: dev-unsubscribe@subversion.tigris.org
For additional commands, e-mail: dev-help@subversion.tigris.org
Received on Tue Jan 14 01:37:25 2003

This is an archived mail posted to the Subversion Dev mailing list.