[svn.haxx.se] · SVN Dev · SVN Users · SVN Org · TSVN Dev · TSVN Users · Subclipse Dev · Subclipse Users · this month's index

Re: Credentials held unencrypted in memory during runtime

From: Ron Wilson <ronw.mrmx_at_gmail.com>
Date: Tue, 12 Apr 2011 19:17:10 -0400

On Tue, Apr 12, 2011 at 4:29 PM, David Huang <khym_at_azeotrope.org> wrote:
> Then you said that this meant that SVN's password saving wasn't implemented
> correctly.

It was implied that the only thing needed to decode the cache was to
look at the source code. That implies that the key is fixed, easily
regenerated or easy to find, or that the algorithm is extremely weak.

------------------------------------------------------
http://tortoisesvn.tigris.org/ds/viewMessage.do?dsForumId=4061&dsMessageId=2719239

To unsubscribe from this discussion, e-mail: [users-unsubscribe_at_tortoisesvn.tigris.org].
Received on 2011-04-13 01:17:12 CEST

This is an archived mail posted to the TortoiseSVN Users mailing list.