Re: Moving away from plain-text passwords in the server-side passwd file

From: Ben Collins-Sussman <sussman_at_red-bean.com>
Date: Wed, 21 May 2008 10:04:00 -0500

On Wed, May 21, 2008 at 2:30 AM, David Glasser <glasser_at_davidglasser.net> wrote:

> See http://svn.collab.net/repos/svn/trunk/notes/sasl.txt for more
> information on using SASL with svnserve.

I've documented it in the svn 1.5 book as well. Really, the barrier
to entry isn't very high. :-)

I agree with ghudson and glasser here: I do not want to see
Subversion start inventing its own half-assed security features. It's
a waste of energy, a reinvention of the wheel, and a maintenance
burden. We should use the 'standard library' -- written by security
experts, depended on by millions -- to do our security.

---------------------------------------------------------------------
To unsubscribe, e-mail: dev-unsubscribe_at_subversion.tigris.org
For additional commands, e-mail: dev-help_at_subversion.tigris.org
Received on 2008-05-21 17:04:47 CEST

This message: [ Message body ]
Next message: Kamesh Jayachandran: "[PATCH][tree-conflicts]Patch to address checkout_tests-7 failure."
Previous message: John Peacock: "Re: HELP NEEDED: Bindings changes for issue #3200"
In reply to: David Glasser: "Re: Moving away from plain-text passwords in the server-side passwd file"
Next in thread: Mark Phippard: "Re: Moving away from plain-text passwords in the server-side passwd file"
Reply: Mark Phippard: "Re: Moving away from plain-text passwords in the server-side passwd file"

Contemporary messages sorted: [ by date ] [ by thread ] [ by subject ] [ by author ] [ by messages with attachments ]