Re: [proposal] Add option for trusting server certs

From: Joe Orton <joe_at_manyfish.co.uk>
Date: 2005-09-24 16:21:59 CEST

On Fri, Sep 23, 2005 at 04:17:46PM -0700, Daniel L. Rall wrote:
> Invocation of 'svn --non-interactive' which contacts a mod_dav_svn server
> over SSL should be possible. Currently, this doesn't seem to be possible
> for self-signed certificates.

I think that all you really need here is a "--ignore-verify-failures"
type option; a "turn off security" option for SSL.

This should just be a local change to the cmdline UI which registers a
server-cert auth provider and returns the equivalent of the "accept
temporarily" option which the UI would present if driven interactively
when an untrusted SSL cert is received.

joe

---------------------------------------------------------------------
To unsubscribe, e-mail: dev-unsubscribe@subversion.tigris.org
For additional commands, e-mail: dev-help@subversion.tigris.org
Received on Sat Sep 24 16:22:58 2005

This message: [ Message body ]
Next message: Marc Sherman: "Re: [Issue 2389] <repository>/README.txt content should depend on fs-type"
Previous message: Marc Sherman: "Re: [Conclusion] Subversion 1.3 distribution tar slimmer?"
In reply to: Daniel L. Rall: "[proposal] Add option for trusting server certs"
Next in thread: Ben Collins-Sussman: "Re: [proposal] Add option for trusting server certs"

Contemporary messages sorted: [ By Date ] [ By Thread ] [ By Subject ] [ By Author ] [ By messages with attachments ]