[svn.haxx.se] · SVN Dev · SVN Users · SVN Org · TSVN Dev · TSVN Users · Subclipse Dev · Subclipse Users · this month's index

Re: SVN Password stored in Plaintext!!!!

From: Olaf Hering <olh_at_suse.de>
Date: 2004-09-23 19:07:16 CEST

 On Thu, Sep 23, kraythe@arcor.de wrote:

> One thing I noted while browsing through my subversion profile is that the passwords for my subversion access are stored in a file in plaintext! This is something that I dfind disturbing. How much trouble would it be to encrypt them and then have the server accept an encrypted version of the password? It would be really cool if companies could install their pgp key on their subversion server in order to do the encryption.

I have a job opportunity for you:

look what ssh-agent and ssh-add does, implement something like that as
svn-agent and svn-add, teach svn something like

store-password = agent

and your problem is gone.
I'm sure the svn community will accept patches.

USB is for mice, FireWire is for men!
To unsubscribe, e-mail: dev-unsubscribe@subversion.tigris.org
For additional commands, e-mail: dev-help@subversion.tigris.org
Received on Thu Sep 23 19:07:58 2004

This is an archived mail posted to the Subversion Dev mailing list.

This site is subject to the Apache Privacy Policy and the Apache Public Forum Archive Policy.