Hiding passwords for svnserve [was: RFC: Encrypting ~/.subversion/auth on Windows]

From: Branko Čibej <brane_at_xbc.nu>
Date: 2004-11-13 01:51:48 CET

Sigfred Håversen wrote:

>Slightly offtopic, why not encrypt the passwords for svnserve?
>
To be pedantic, you wouldn't encrypt those passwords. You'd store a hash
of the (appropriately salted) password, wihch is something you can't do
on the client.

> httpd does it
>with htpasswd, and it should not be such a burden for repo admins to use
>something like "svnpasswd". Granted, many (most?) passwords are quickly
>broken, but those that have stronger requirements will benefit from this.
>
>
I think it shouldn't be too much trouble to write a program -- or even
better, a Python script -- that does this.

-- Brane

---------------------------------------------------------------------
To unsubscribe, e-mail: dev-unsubscribe@subversion.tigris.org
For additional commands, e-mail: dev-help@subversion.tigris.org
Received on Sat Nov 13 01:51:41 2004

This message: [ Message body ]
Next message: Ben Collins-Sussman: "Re: RFC: Encrypting ~/.subversion/auth on Windows"
Previous message: Marcus Rueckert: "Re: RFC: Encrypting ~/.subversion/auth on Windows"

Contemporary messages sorted: [ By Date ] [ By Thread ] [ By Subject ] [ By Author ] [ By messages with attachments ]