[svn.haxx.se] · SVN Dev · SVN Users · SVN Org · TSVN Dev · TSVN Users · Subclipse Dev · Subclipse Users · this month's index

Re: Moving away from plain-text passwords in the server-side passwd file

From: Jeff Robins <jeffrobinssae_at_gmail.com>
Date: Wed, 21 May 2008 21:19:16 -0700

On Wednesday 21 May 2008 3:55:31 am Mark Phippard wrote:
> On Tue, May 20, 2008 at 11:42 PM, Jeff Robins
<jeffrobinssae_at_gmail.com> wrote:
> > On Tuesday 20 May 2008 6:28:58 pm David Glasser wrote:
> >> Subversion 1.5 supports SASL for svnserve authentication.
> >>
> >> --dave
> >
> > Yes, but doesn't that require an external authentication manager?
> > I would like to provide a method for internal authentication using
> > non-plain-text stored passwords.
>
> SASL supports a number of sources for authentication information.
> For example it comes with SASLDB which contains commands like
> saslpasswd2 and sasldblistusers2 that you can use to maintain entries
> in the DB. This is the closest it has to our password file. On some
> operating systems it can also be connected to an LDAP server.

Thank you Mark. I didn't see any mention of this in the Wikipedia entry
and the name "Simple Authentication and Security Layer" doesn't sound
like it stores passwords.

---------------------------------------------------------------------
To unsubscribe, e-mail: dev-unsubscribe_at_subversion.tigris.org
For additional commands, e-mail: dev-help_at_subversion.tigris.org
Received on 2008-05-22 06:19:50 CEST

This is an archived mail posted to the Subversion Dev mailing list.

This site is subject to the Apache Privacy Policy and the Apache Public Forum Archive Policy.