Re: Small, picky patch

Eric M. Hopper <hopper@omnifarious.org> wrote:

> The message about the security of the ssl overrides is overly alarmist.
> The only ssl- options that cause security problems in the servers config
> file are the ssl-ignore ones.

<snip />

> Attached is a patch that fixes the wording.

There is a typo in your patch:

+ "### Note that the ssl-gnore overrides significantly decrease the\n"
------------------------^ missing 'i'

+ "### security of the connection, and may allow a third party to\n"
+ "### intercept or even modify the transmitted data\n"

The attached patch corrects this.

Cheers,
Erik

BTW, wouldn't it be better to say 'ssl-ignore-* overrides'? just an idea...

--
LOG:
* subversion/libsvn_subr/config_file.c: clarified a note on security when
using the ssl-ignore-* overrides

Index: subversion/libsvn_subr/config_file.c
===================================================================
--- subversion/libsvn_subr/config_file.c (revision 5996)
+++ subversion/libsvn_subr/config_file.c (working copy)
@@ -808,9 +808,9 @@
         "### match is found, the server info is from the section with the\n"
         "### corresponding name.\n"
         "\n"
- "### Note that the ssl overrides significantly decrease the security\n"
- "### of the connection, and may allow a third party to intercept or\n"
- "### even modify the transmitted data\n"
+ "### Note that the ssl-gnore overrides significantly decrease the\n"
+ "### security of the connection, and may allow a third party to\n"
+ "### intercept or even modify the transmitted data\n"
         "\n"
         "# [groups]\n"
         "# group1 = *.collab.net\n"

---------------------------------------------------------------------
To unsubscribe, e-mail: dev-unsubscribe@subversion.tigris.org
For additional commands, e-mail: dev-help@subversion.tigris.org
Received on Tue May 27 14:05:58 2003