Re: SSPIPerRequestAuth

From: Purple Streak <mrpurplestreak_at_googlemail.com>
Date: Sun, 7 Sep 2008 20:17:38 +0100

2008/9/6 Stefan Küng <tortoisesvn_at_gmail.com>:
> Purple Streak wrote:
>> 2008/9/5 Stefan Küng <tortoisesvn_at_gmail.com>:
>>> Subversion doesn't really know about the authentication, it uses other
>>> modules to do that job. For SSPI authentication, it's the neon library
>>> that does the job.
>>> But neon does the authentication according to the data it gets from the
>>> server. And simply activating SSPIPerRequestAuth should not change the
>>> authentication, at least not as far as I know.
>>> So I would suspect that this is a problem of the mod_auth_sspi module.

I just looked at the mod_auth_sspi code.. and for SSPIPerRequestAuth it has

"set to 'on' if you want authorization per request instead of per connection"

Now does that mean if you open one https connection and use keepalive
to send several requests that turning this option off actually means
you authenticate less and not more? I'd read previously on this list
that leaving it off meant it would authenticate each data packet?

---------------------------------------------------------------------
To unsubscribe, e-mail: users-unsubscribe_at_tortoisesvn.tigris.org
For additional commands, e-mail: users-help_at_tortoisesvn.tigris.org
Received on 2008-09-07 21:18:13 CEST

This message: [ Message body ]
Next message: Kevin Grover: "Re: Web site download ad misleading"
Previous message: Andy Levy: "Re: WinXP SP3 Context Menu is not shown"
In reply to: Stefan Küng: "Re: SSPIPerRequestAuth"
Next in thread: Stefan Küng: "Re: SSPIPerRequestAuth"
Reply: Stefan Küng: "Re: SSPIPerRequestAuth"

Contemporary messages sorted: [ by date ] [ by thread ] [ by subject ] [ by author ] [ by messages with attachments ]