[svn.haxx.se] · SVN Dev · SVN Users · SVN Org · TSVN Dev · TSVN Users · Subclipse Dev · Subclipse Users · this month's index

Re: Any progress with svnserve.conf encryption? (was: Re: using (or coding support for) encrypted passwords)

From: Vlad Georgescu <vgeorgescu_at_gmail.com>
Date: 2006-12-06 18:39:17 CET

On 12/6/06, Dave_Thomas mailing lists <davelist@peoplemerge.com> wrote:
> Hi,
>
> I see recent active discussions. Has a SASL-enabled server been
> implemented?

Yes, support for Cyrus SASL authentication is already integrated into
Subversion /trunk, and will hopefully make it into the next minor
release (1.5.0). Cyrus SASL supports several password-checking
mechanisms that use encrypted passwords, such as:

- GSSAPI (Kerberos)
- authentication mechanisms that use non-plaintext secrets, such as
OTP (One-time Passwords) or SRP (Secure Remote Password)
- PAM, /etc/shadow (however this would also require SSL support,
otherwise the password _transmission_ wouldn't be secure)

-- 
Vlad
---------------------------------------------------------------------
To unsubscribe, e-mail: dev-unsubscribe@subversion.tigris.org
For additional commands, e-mail: dev-help@subversion.tigris.org
Received on Wed Dec 6 18:39:43 2006

This is an archived mail posted to the Subversion Dev mailing list.