[svn.haxx.se] · SVN Dev · SVN Users · SVN Org · TSVN Dev · TSVN Users · Subclipse Dev · Subclipse Users · this month's index

Re: RFC: New authn/authz policy for svn.collab.net

From: Julian Foad <julianfoad_at_btopenworld.com>
Date: Thu, 30 Jul 2009 18:43:55 +0100

Alec Kloss wrote:
> On 2009-07-30 12:37, C. Michael Pilato wrote:
> > I disagree. Doing this adds unnecessary complication to the configuration
> > (some of which is exactly the kind of thing I'm trying to get rid of by
> > applying the rules I suggested), unnecessary performance/load penalties to
> > the server (why do we want to be doing SSL calculations for anonymous
> > accessors?), and all while bringing no discernible benefit to the users.
>
> SSL for anonymous access prevents MITM attacks on downloads from the
> repository.

Do you mean to imply that that's a discernable benefit?

- Julian

------------------------------------------------------
http://subversion.tigris.org/ds/viewMessage.do?dsForumId=462&dsMessageId=2377071
Received on 2009-07-30 19:44:28 CEST

This is an archived mail posted to the Subversion Dev mailing list.