Re: Problem with special characters in password with ntlm auth

Yves Glodt wrote:

> I have set up an Subversion server using the following software:
>
> - Apache 2.0.55
> - SVN 1.3.0
> - mod_auth_sspi 1.0.4-rc
> - Openssl 0.9.8a
> - TortoiseSVN 1.3.2, Build 5840 - 32 Bit
>
>
> I connect to it from Tortoisesvn via https, and it works well, except
> one thing....
> It seems if a user has a special character in his password, he is always
> rejected with the following error (from apache errorlog):
>
> (OS 1326)Logon failure: unknown user name or bad password. : user
> MYDOMAIN\\yves: authentication failure for "/".
>
> Special character is e.g. any of the following: é $ ' !
>
> What makes me post here is the fact that I can login with my
> user/password through firefox, it only seems to fail with Tortoisesvn...
>
> Someone has an idea where this could come from? Is there another way to
> debug this?

TortoiseSVN (and the Subversion client) encode the username and the
password to UTF8 encoding before sending it to the server. Since a
Subversion client can't know which authentication method is used on the
server, that's the best way to go. It would be a security risk (a really
big one) to send the password ANSI encoded (imagine a password with e.g.
chinese chars, you could basically log on with a password "???????"
because that's the char the server would get if it tries to encode the
password with the wrong codepage).

I'm not sure if mod_auth_sspi doesn't understand UTF8 or if it's the
windows server the auth is done against. But one of them obviously doesn't.

Stefan

-- 
        ___
   oo  // \\      "De Chelonian Mobile"
  (_,\/ \_/ \     TortoiseSVN
    \ \_/_\_/>    The coolest Interface to (Sub)Version Control
    /_/   \_\     http://tortoisesvn.tigris.org
---------------------------------------------------------------------
To unsubscribe, e-mail: users-unsubscribe@tortoisesvn.tigris.org
For additional commands, e-mail: users-help@tortoisesvn.tigris.org