[svn.haxx.se] · SVN Dev · SVN Users · SVN Org · TSVN Dev · TSVN Users · Subclipse Dev · Subclipse Users · this month's index

Re: RFC: Encrypting ~/.subversion/auth on Windows

From: <kfogel_at_collab.net>
Date: 2004-11-13 02:07:54 CET

Branko Čibej <brane@xbc.nu> writes:
> Oof. I just read the CRAM-MD5 RFC, and it doesn't require you to store
> cleartext on the server. We could store hashed passwd representations
> on the server without changing client code. But if someone lifted
> those hashes off of the server, they'd be able to modify the client to
> authenticate with the server anyway.

Congratulations, you've just come full circle... as does everyone who
thinks about CRAM-MD5. The hash becomes the plaintext :-).

Basically, if we're not doing public-key cryptography, then we have
two choices:

   Client and server store password hashed, but it goes over the wire
   in the clear.

   -or-

   Client and server store password in the clear, but it goes over the
   wire hashed.

We decided to protect the wire, which I think is a good choice.

-K

---------------------------------------------------------------------
To unsubscribe, e-mail: dev-unsubscribe@subversion.tigris.org
For additional commands, e-mail: dev-help@subversion.tigris.org
Received on Sat Nov 13 04:04:18 2004

This is an archived mail posted to the Subversion Dev mailing list.