Re: RFC: Encrypting ~/.subversion/auth on Windows

From: <kfogel_at_collab.net>
Date: 2004-11-13 02:07:54 CET

Branko Čibej <brane@xbc.nu> writes:
> Oof. I just read the CRAM-MD5 RFC, and it doesn't require you to store
> cleartext on the server. We could store hashed passwd representations
> on the server without changing client code. But if someone lifted
> those hashes off of the server, they'd be able to modify the client to
> authenticate with the server anyway.

Congratulations, you've just come full circle... as does everyone who
thinks about CRAM-MD5. The hash becomes the plaintext :-).

Basically, if we're not doing public-key cryptography, then we have
two choices:

Client and server store password hashed, but it goes over the wire
in the clear.

-or-

Client and server store password in the clear, but it goes over the
wire hashed.

We decided to protect the wire, which I think is a good choice.

-K

---------------------------------------------------------------------
To unsubscribe, e-mail: dev-unsubscribe@subversion.tigris.org
For additional commands, e-mail: dev-help@subversion.tigris.org
Received on Sat Nov 13 04:04:18 2004

This message: [ Message body ]
Next message: Branko Čibej: "Re: A new way to create directories."
Previous message: Josh Pieper: "Re: svn blame on trunk"
In reply to: Branko Čibej: "Re: RFC: Encrypting ~/.subversion/auth on Windows"
Next in thread: Branko Čibej: "Re: RFC: Encrypting ~/.subversion/auth on Windows"
Reply: Branko Čibej: "Re: RFC: Encrypting ~/.subversion/auth on Windows"
Reply: Sigfred Håversen: "Re: RFC: Encrypting ~/.subversion/auth on Windows"
Reply: Chris AtLee: "Re: RFC: Encrypting ~/.subversion/auth on Windows"

Contemporary messages sorted: [ By Date ] [ By Thread ] [ By Subject ] [ By Author ] [ By messages with attachments ]