[svn.haxx.se] · SVN Dev · SVN Users · SVN Org · TSVN Dev · TSVN Users · Subclipse Dev · Subclipse Users · this month's index

Re: svnserve TLS support?

From: Michael Sweet <mike_at_easysw.com>
Date: 2006-04-26 17:55:05 CEST

Wesley J. Landaker wrote:
> On Wednesday 26 April 2006 09:01, Michael Sweet wrote:
>> Wesley J. Landaker wrote:
>>> ...
>>> Also, as a separate but related issue, it would also be nice to support
>>> HTTP TLS upgrading when using http (RFC 2817); I don't think this is
>>> already supported, but I haven't checked.)
>> There *are* issues with HTTP Upgrade that may be non-trivial to deal
>> with in Neon and Serf; basically, server-initiated upgrades can
>> happen too late to provide protection of sensitive information, so
>> you need to tweak the client code a little to work around it...
>>
>> We use the "Expect: 100-continue" header in CUPS to get the 426
>> response before sending the request body...
>
> So, assuming this support was desired, is that something that would/should
> be changed in Subversion, or in Neon, or both? I understand what you're
> saying about server-initiated upgrades, I'm just not very familiar with how
> much of this is controlled by libraries (i.e. Neon) and how much by
> Subversion itself (i.e. libsvn_ra_dav).

That I can't answer, but I'm sure one of the core developers will
pipe in! :)

-- 
______________________________________________________________________
Michael Sweet, Easy Software Products           mike at easysw dot com
Internet Printing and Document Software          http://www.easysw.com
---------------------------------------------------------------------
To unsubscribe, e-mail: dev-unsubscribe@subversion.tigris.org
For additional commands, e-mail: dev-help@subversion.tigris.org
Received on Wed Apr 26 17:55:40 2006

This is an archived mail posted to the Subversion Dev mailing list.

This site is subject to the Apache Privacy Policy and the Apache Public Forum Archive Policy.