Re: RFC: New authn/authz policy for svn.collab.net

From: C. Michael Pilato <cmpilato_at_collab.net>
Date: Thu, 30 Jul 2009 12:37:12 -0400

Arfrever Frehtes Taifersar Arahesis wrote:
> 2009-07-30 18:11:03 C. Michael Pilato napisał(a):
>> I'm contemplating a relatively minor change of authn/authz policy for
>> svn.collab.net. Specifically, I'd like to make two changes:
>>
>> 1. Allow authenticated repository access only over SSL connections, and
>> anonymous repository access only over non-SSL connections.
>
> IMHO anonymous repository access should be still available over SSL connections.

I disagree. Doing this adds unnecessary complication to the configuration
(some of which is exactly the kind of thing I'm trying to get rid of by
applying the rules I suggested), unnecessary performance/load penalties to
the server (why do we want to be doing SSL calculations for anonymous
accessors?), and all while bringing no discernible benefit to the users.

-- 
C. Michael Pilato <cmpilato_at_collab.net>
CollabNet   <>   www.collab.net   <>   Distributed Development On Demand
------------------------------------------------------
http://subversion.tigris.org/ds/viewMessage.do?dsForumId=462&dsMessageId=2377041

application/pgp-signature attachment: OpenPGP digital signature

Received on 2009-07-30 18:37:32 CEST

This message: [ Message body ]
Next message: Julian Foad: "Re: issue 3342 - summary of conflicts and skips [was: ... 3432 ...]"
Previous message: Arfrever Frehtes Taifersar Arahesis: "Re: RFC: New authn/authz policy for svn.collab.net"
In reply to: Arfrever Frehtes Taifersar Arahesis: "Re: RFC: New authn/authz policy for svn.collab.net"
Next in thread: Alec Kloss: "Re: RFC: New authn/authz policy for svn.collab.net"
Reply: Alec Kloss: "Re: RFC: New authn/authz policy for svn.collab.net"

Contemporary messages sorted: [ by date ] [ by thread ] [ by subject ] [ by author ] [ by messages with attachments ]