On 2006-04-26 08:20:17 -0600, Wesley J. Landaker wrote:
> I see issue #1144 about integrating SASL into svnserve for authentication.
> Has anyone considered also supporting TLS to allow security for the entire
> svnserve connection, on par with what is provided currently for https?
>
> Some advantages of having svnserve support TLS upgrading:
> * Works well with SASL, used in imaps, smtps, xmpp, ldap, etc.
> * Provides consistent transport security (vs. using SASL alone)
> * TLS is a draft internet standard that is already widely deployed.
> * Open source TLS libraries available, compatible with Subversion license:
> * GNU TLS <http://www.gnu.org/software/gnutls/> is LGPL'd.
> * OpenSSL <http://www.openssl.org/> is under an Apache-style license.
> * Doesn't require an extra IANA port (vs. using straight SSL)
> * (Since we should, as recommended, use an upgrade-to-TLS mechanism.)
>
> Anyway, just wondering if anyone else has considered this, and/or if anyone
> is interested in working on this. =)
>
> Also, as a separate but related issue, it would also be nice to support HTTP
> TLS upgrading when using http (RFC 2817); I don't think this is already
> supported, but I haven't checked.)
this is WIP: http://svn.collab.net/repos/svn/branches/svnserve-ssl/
--
openSUSE - SUSE Linux is my linux
openSUSE is good for you
www.opensuse.org
---------------------------------------------------------------------
To unsubscribe, e-mail: dev-unsubscribe@subversion.tigris.org
For additional commands, e-mail: dev-help@subversion.tigris.org
Received on Wed Apr 26 17:20:25 2006