[svn.haxx.se] · SVN Dev · SVN Users · SVN Org · TSVN Dev · TSVN Users · Subclipse Dev · Subclipse Users · this month's index

Re: RFA: Encrypting auth info

From: Branko ─îibej <brane_at_xbc.nu>
Date: 2005-02-16 16:49:33 CET

Justin Erenkrantz wrote:

> --On Wednesday, February 16, 2005 4:29 PM +0100 "Branko ?ibej"
> <brane@xbc.nu> wrote:
>
>> I really disagree with this. I don't want the idea of encrypting
>> sensitive
>> data to be specific to one OS, or to a particular auth provid
>> configuration .
>
>
> There is no real portable way to encrypt and decrypt sensitive data.
> And, only the simple auth provider has passwords that would need to be
> encrypted. So, none of the other auth providers would benefit from this.

At least one of thos we have now would, the cert_pw provider.

> Furthermore, on most Unix OSes, you are far better off using an
> encrypted file system. Linux (dm-crypt), Darwin (FileVault), and
> FreeBSD (gdbe) all have this functionality to various degrees.

And ntfs has native encryption on Windows, too. But that's not the point.

-- Brane

---------------------------------------------------------------------
To unsubscribe, e-mail: dev-unsubscribe@subversion.tigris.org
For additional commands, e-mail: dev-help@subversion.tigris.org
Received on Wed Feb 16 16:51:22 2005

This is an archived mail posted to the Subversion Dev mailing list.