Re: CGI script for self-administering password in svnserve passwd files

From: John Peacock <john.peacock_at_havurah-software.org>
Date: Thu, 14 Feb 2008 06:56:19 -0500

Jonathan Kamens wrote:
> We’re in the process of setting up Subversion in-house, and we want to
> use svnserve in stand-alone mode (don’t want to use WebDAV because it’s
> slower than svnserve, and don’t want to use SSH because it’s slower, has
> less access control and requires creating accounts for all the users on
> the Subversion server).

Just FYI, there is absolutely no reason to eliminate svv+ssh from consideration
because you don't want to give all users logins:

http://subversion.tigris.org/faq.html#ssh-svnserve-location

That is actually a much more secure methodology, since it doesn't require the
user to remember any password - other than their private key's, if they set one
- which is much more secure than any password.

And doing it that way has no effect on whether you use the internal access
control available to svnserve.

John

---------------------------------------------------------------------
To unsubscribe, e-mail: dev-unsubscribe_at_subversion.tigris.org
For additional commands, e-mail: dev-help_at_subversion.tigris.org
Received on 2008-02-14 12:56:10 CET

This message: [ Message body ]
Next message: Jonathan Kamens: "Re: CGI script for self-administering password in svnserve passwd files"
Previous message: Bert Huijben: "RE: Messages and protocol crash on svn log with multiple targets"
In reply to: Jonathan Kamens: "CGI script for self-administering password in svnserve passwd files"
Next in thread: Jonathan Kamens: "Re: CGI script for self-administering password in svnserve passwd files"
Reply: Jonathan Kamens: "Re: CGI script for self-administering password in svnserve passwd files"

Contemporary messages sorted: [ by date ] [ by thread ] [ by subject ] [ by author ] [ by messages with attachments ]