Re: Is the svn:// protocol secure when encrypted via SASL?
From: Keith Palmer Jr. <keith_at_consolibyte.com>
Date: Mon, 21 Feb 2011 14:48:49 -0500
Nothing in what you just copy-pasted indicates whether it's *the actual data stream* that's being encrypted, or just the *authentication*. I need to know if the checked-out files that are being transferred are encrypted or not.
--- - Keith Palmer ConsoliBYTE, LLC Ask for a quote! - QuickBooks Integration and Software Development keith_at_ConsoliBYTE.com 1-860-341-1464 http://www.ConsoliBYTE.com/ Follow us on Twitter at: https://twitter.com/consolibyte AIM: consolibyte MSN: support_at_consolibyte.com Yahoo: consolibyte_at_yahoo.com Gtalk: consolibyte Skype: consolibyte On Feb 21, 2011, at 2:13 PM, Philip Martin wrote: > "Keith Palmer Jr." <keith_at_consolibyte.com> writes: > >> So there's no one out there that knows whether SASL encrypts the data >> stream, or just the authentication (or which SASL modules encrypt the >> data, and which don't)? > > That depends on how you have configured your repository via > svnserve.conf: > > [sasl] > ### This option specifies whether you want to use the Cyrus SASL > ### library for authentication. Default is false. > ### This section will be ignored if svnserve is not built with Cyrus > ### SASL support; to check, run 'svnserve --version' and look for a line > ### reading 'Cyrus SASL authentication is available.' > #use-sasl = true > ### These options specify the desired strength of the security layer > ### that you want SASL to provide. 0 means no encryption, 1 means > ### integrity-checking only, values larger than 1 are correlated > ### to the effective key length for encryption (e.g. 128 means 128-bit > ### encryption). The values below are the defaults. > # min-encryption = 0 > # max-encryption = 256 > > -- > PhilipReceived on 2011-02-21 20:49:23 CET |
This is an archived mail posted to the Subversion Dev mailing list.
This site is subject to the Apache Privacy Policy and the Apache Public Forum Archive Policy.