[svn.haxx.se] · SVN Dev · SVN Users · SVN Org · TSVN Dev · TSVN Users · Subclipse Dev · Subclipse Users · this month's index

RE: Re: TSVN does not support NTLM authentication

From: Wyss Clemens (Helbling Technik) <clemens.wyss_at_helbling.ch>
Date: 2007-12-06 18:22:31 CET

>For security reasons: NTLM is not secure over http.
I agree, but honestly: who applies ntlm on the internet? The default application of ntlm is on the lan/wan, where ntlm packets fly around all the time

>I don't think the neon devs will ever do that.
IMHO they should not bother about how ntlm is used...
...or am I missing a something? Which could be very well ;-)

-----Original Message-----
From: Stefan Küng [mailto:tortoisesvn@gmail.com]
Sent: Donnerstag, 6. Dezember 2007 07:12
To: dev@tortoisesvn.tigris.org
Subject: Re: TSVN does not support NTLM authentication

Wyss Clemens (Helbling Technik) wrote:
>> neon 0.26 has sspi authentication disabled for http connections. You
>> must use https to get sspi authentication.
> why?

For security reasons: NTLM is not secure over http.

> Any plans to "relax" this dependency again?

I don't think the neon devs will ever do that.

Stefan

-- 
       ___
  oo  // \\      "De Chelonian Mobile"
 (_,\/ \_/ \     TortoiseSVN
   \ \_/_\_/>    The coolest Interface to (Sub)Version Control
   /_/   \_\     http://tortoisesvn.net
---------------------------------------------------------------------
To unsubscribe, e-mail: dev-unsubscribe@tortoisesvn.tigris.org
For additional commands, e-mail: dev-help@tortoisesvn.tigris.org
---------------------------------------------------------------------
To unsubscribe, e-mail: dev-unsubscribe@tortoisesvn.tigris.org
For additional commands, e-mail: dev-help@tortoisesvn.tigris.org
Received on Thu Dec 6 18:23:04 2007

This is an archived mail posted to the TortoiseSVN Dev mailing list.