Re: SVN Password stored in Plaintext!!!!

From: Olaf Hering <olh_at_suse.de>
Date: 2004-09-23 19:07:16 CEST

On Thu, Sep 23, kraythe@arcor.de wrote:

> One thing I noted while browsing through my subversion profile is that the passwords for my subversion access are stored in a file in plaintext! This is something that I dfind disturbing. How much trouble would it be to encrypt them and then have the server accept an encrypted version of the password? It would be really cool if companies could install their pgp key on their subversion server in order to do the encryption.

I have a job opportunity for you:

look what ssh-agent and ssh-add does, implement something like that as
svn-agent and svn-add, teach svn something like

[auth]
store-password = agent

and your problem is gone.
I'm sure the svn community will accept patches.

-- 
USB is for mice, FireWire is for men!
sUse lINUX ag, nÜRNBERG
---------------------------------------------------------------------
To unsubscribe, e-mail: dev-unsubscribe@subversion.tigris.org
For additional commands, e-mail: dev-help@subversion.tigris.org

Received on Thu Sep 23 19:07:58 2004

This message: [ Message body ]
Next message: Jason Cohen: "Possible bug in svn log?"
Previous message: Max Bowsher: "Re: SVN Password stored in Plaintext!!!!"
In reply to: kraythe_at_arcor.de: "SVN Password stored in Plaintext!!!!"
Next in thread: Jani Averbach: "Re: SVN Password stored in Plaintext!!!!"
Reply: Jani Averbach: "Re: SVN Password stored in Plaintext!!!!"

Contemporary messages sorted: [ By Date ] [ By Thread ] [ By Subject ] [ By Author ] [ By messages with attachments ]