Re: [Issue 4145] Master passphrase and encrypted credentials cache

On 03/26/2012 09:08 AM, Daniel Shahaf wrote:
> How would you implement encryption? We don't currently have encryption
> code in the core.

Correct. We'd need to pull in additional dependencies that have freely
available implementations on all our supported platforms. Blowfish, 3DES,
or somesuch. (We don't want to be in the business of composing our own
encryption algorithms!)

>>> Conversely -- suppose I know the master password, and I have read access
>>> to the .subversion/auth/ directory. What is the process for me to
>>> obtain the cache password in cleartext, to authenticate to the server
>>> with?
>>
>> I thought some about this earlier. I know that I certainly make use of
>> Firefox's "Show Passwords" feature on occasion, so I'd like Subversion to
>> offer the same. Not sure about the details (UI, etc.) on this one, but I
>> would also consider this a secondary feature not strictly required.
>> Thoughts? Suggestions?
>
> Perhaps it belongs in a tools/ utility.

Well, I wondered about even putting the core change-password functionality
into a separate binary. If I did that, it would make sense to use the same
binary for password display/export.

-- 
C. Michael Pilato <cmpilato_at_collab.net>
CollabNet   <>   www.collab.net   <>   Distributed Development On Demand