Re: [PATCH] default to --no-auth-cache

From: Eric Gillespie <epg_at_pretzelnet.org>
Date: 2003-01-14 19:49:23 CET

Karl Fogel <kfogel@newton.ch.collab.net> writes:

> But having it in ~/.subversion/, in a location readable only by that
> user and by root, is fine. Remember, we're talking about http basic
> auth passwords here -- anyone who has root on the client box could
> just sniff the network to get them too.

Not if it's basic auth over SSL.

--
Eric Gillespie <*> epg@pretzelnet.org

Build a fire for a man, and he'll be warm for a day. Set a man on
fire, and he'll be warm for the rest of his life. -Terry Pratchett

---------------------------------------------------------------------
To unsubscribe, e-mail: dev-unsubscribe@subversion.tigris.org
For additional commands, e-mail: dev-help@subversion.tigris.org
Received on Tue Jan 14 19:50:19 2003

This message: [ Message body ]
Next message: rbb_at_rkbloom.net: "Re: [PATCH] default to --no-auth-cache"
Previous message: Karl Fogel: "Re: [PATCH] default to --no-auth-cache"
In reply to: Karl Fogel: "Re: [PATCH] default to --no-auth-cache"
Next in thread: Josef Wolf: "Re: [PATCH] default to --no-auth-cache"

Contemporary messages sorted: [ By Date ] [ By Thread ] [ By Subject ] [ By Author ] [ By messages with attachments ]