[svn.haxx.se] · SVN Dev · SVN Users · SVN Org · TSVN Dev · TSVN Users · Subclipse Dev · Subclipse Users · this month's index

Re: [PATCH] Change Default Client Credentials Caching

From: Thorsten Haude <linux_at_thorstenhau.de>
Date: 2005-07-16 22:16:48 CEST

Hi,

* Ben Collins-Sussman wrote (2005-07-15 23:31):
>
>On Jul 15, 2005, at 4:12 PM, Thorsten Haude wrote:
>>
>>Question:
>>1a) Is this sufficient to switch off the default caching of client
>> credentials?
>>1b) Is there a better way?
>> 2) In case we decide to disallow client credentials caching entirely:
>> What would be the best way to do this?
>
>1. Why do you want to disable credential caching?

We don't like the cleartext password. We have a pretty heterogenous
environment, the users' $HOMEs are mounted remote and too many people
have access to the file server.

No, I don't like it either, but that's the way it is.

>2. Have you read
>
>http://svnbook.com/nightly/en/svn.serverconfig.netmodel.html#svn.serverconfig.netmodel.credcache

I read http://svnbook.red-bean.com/en/1.1/ch06s02.html#svn-ch-6-sect-2.2.
Skimming the nightly doc I couldn't find any difference. Was something
changed?

>3. Why not just set 'store-passwords = no' in ~/.subversion/config?

This would make deployment more difficult. A patched version would be
a simple binary install using whatever package manager we prefer at
the moment. Also, I found at least two versions of the default config
file, so patching the config automatically would not be easier.

Any ideas about my original questions? Would the patch work? Is there
a better way? Is there a way to disable client credentials caching
entirely?

Thorsten

-- 
Fear leads to anger. Anger leads to hate. Hate leads to
using Windows for mission-critical applications.

  • application/pgp-signature attachment: stored
Received on Sat Jul 16 22:19:39 2005

This is an archived mail posted to the Subversion Dev mailing list.