Re: svnserve SASL documentation?

From: Lars Gullik Bjønnes <larsbj_at_gullik.net>
Date: 2007-04-12 08:33:19 CEST

Eric Gillespie <epg@pretzelnet.org> writes:

| Vlad Georgescu <vgeorgescu@gmail.com> writes:
|
| > saslauthd expects plaintext passwords, which means the passwords must
| > travel over the wire in plaintext. This would be only be OK if we
| > supported SSL, which we currently don't, so plaintext mechanisms are
| > currently disabled. I could enable them again, if people think that's a
| > good idea.
|
| No, i don't think that's a good idea.

[...]

Just a Q. Does this mean that the use of /etc/passwd as the user/pass
db for svnserve is impossible before we get SSL/TLS support?

(I have been waiting for just that feature and thought SASL would give
it. In my setting on-the-wire security is not important, so plaintext
passwds would not be a (huge) problem.)

-- 
	Lgb
---------------------------------------------------------------------
To unsubscribe, e-mail: dev-unsubscribe@subversion.tigris.org
For additional commands, e-mail: dev-help@subversion.tigris.org

Received on Thu Apr 12 08:33:53 2007

This message: [ Message body ]
Next message: Barry Scott: "Re: Proof of concept higher-level python bindings for SoC project"
Previous message: Paul Burba: "RE: [PATCH] Fix Win32 JavaHL Failures"
In reply to: Eric Gillespie: "Re: svnserve SASL documentation?"
Next in thread: Vlad Georgescu: "Re: svnserve SASL documentation?"
Reply: Vlad Georgescu: "Re: svnserve SASL documentation?"

Contemporary messages sorted: [ By Date ] [ By Thread ] [ By Subject ] [ By Author ] [ By messages with attachments ]