Re: RFC: Encrypting ~/.subversion/auth on Windows

From: Branko ÄŒibej <brane_at_xbc.nu>
Date: 2004-11-13 02:24:26 CET

Ben Collins-Sussman wrote:

>
> On Nov 12, 2004, at 6:31 PM, Sigfred HÃ¥versen wrote:
>
>>
>> Slightly offtopic, why not encrypt the passwords for svnserve?
>
>
> IIRC, because of the way the CRAM-MD5 algorithm works, the server
> needs access to the actual password, not a hashed version of it.

Oh! Ouch.

-- Brane

---------------------------------------------------------------------
To unsubscribe, e-mail: dev-unsubscribe@subversion.tigris.org
For additional commands, e-mail: dev-help@subversion.tigris.org
Received on Sat Nov 13 02:26:43 2004

This message: [ Message body ]
Next message: Daniel L. Rall: "RE: Pure java subversion library"
Previous message: Sigfred Håversen: "Re: RFC: Encrypting ~/.subversion/auth on Windows"
In reply to: Ben Collins-Sussman: "Re: RFC: Encrypting ~/.subversion/auth on Windows"
Next in thread: Branko ÄŒibej: "Re: RFC: Encrypting ~/.subversion/auth on Windows"
Reply: Branko ÄŒibej: "Re: RFC: Encrypting ~/.subversion/auth on Windows"

Contemporary messages sorted: [ By Date ] [ By Thread ] [ By Subject ] [ By Author ] [ By messages with attachments ]