RE: Re: Cached credentials decrypted client or server?

From: Aaron McIver <aaron.mciver_at_gmail.com>
Date: Fri, 8 Oct 2010 08:25:17 -0700 (PDT)

You say they are encrypted/decrypted locally...but then you say they are sent to the server encrypted? Why would the client decrypt them if they are doing no validation?

I'm confused.

> On Thu, Oct 7, 2010 at 13:17, Aaron McIver <aaron.mciver_at_gmail.com> wrote:
> > The stored auth credentials, are those decrypted client side or server side?
>
> They encrypted & decrypted locally when accessed by the client to
> communicate with the server.
>
> They are sent to the repository for authentication encrypted or
> obfuscated if you are using an access/authentication method which
> supports/requires it - digest authentication over HTTP, HTTPS, SASL
> with svnserve, etc.

------------------------------------------------------
http://tortoisesvn.tigris.org/ds/viewMessage.do?dsForumId=4061&dsMessageId=2669333

To unsubscribe from this discussion, e-mail: [users-unsubscribe_at_tortoisesvn.tigris.org].
Received on 2010-10-08 17:25:27 CEST

This message: [ Message body ]
Next message: Andy Levy: "Re: Re: Cached credentials decrypted client or server?"
Previous message: Stefan Küng: "Re: 1.6.10 post-commit client hook fails when only deleting folder"
In reply to: Andy Levy: "Re: Cached credentials decrypted client or server?"
Next in thread: Andy Levy: "Re: Re: Cached credentials decrypted client or server?"
Reply: Andy Levy: "Re: Re: Cached credentials decrypted client or server?"
Reply: Bob Archer: "RE: Re: Cached credentials decrypted client or server?"

Contemporary messages sorted: [ by date ] [ by thread ] [ by subject ] [ by author ] [ by messages with attachments ]