[svn.haxx.se] · SVN Dev · SVN Users · SVN Org · TSVN Dev · TSVN Users · Subclipse Dev · Subclipse Users · this month's index

Feature Request: clients shouldn't store auth-creds

From: Robert <robertLinux_at_gmx.de>
Date: 2004-12-27 01:48:17 CET

Would you please set store-auth-creds to no and uncomment that key
please in ~.subversion/config.

I have a DMZ with Web Server on which I work with svn for the web pages
and today decided to enforce digest auth in apache.conf. But for other
users (the clients) in a corporate network it is very confusing. Since
those people normally are no admins it doesn't make sense.

And it took me hours to change every working copy and the config on all
my accounts. On the other side enabling caching would be much faster.

In my opinion, security has to be enabled by default, if the password
dialog is annoying for some user, he should decide on his own.

Anyway there should be a server side mechanism to enforce that security
policy. Imagine someones account getting hacked and he has write access
(in a software developing company) the whole database could get screwed


Robert Welz

SVN 1.0.9,
several linux clients
and a Mac repository.

To unsubscribe, e-mail: dev-unsubscribe@subversion.tigris.org
For additional commands, e-mail: dev-help@subversion.tigris.org
Received on Mon Dec 27 01:49:29 2004

This is an archived mail posted to the Subversion Dev mailing list.

This site is subject to the Apache Privacy Policy and the Apache Public Forum Archive Policy.