[svn.haxx.se] · SVN Dev · SVN Users · SVN Org · TSVN Dev · TSVN Users · Subclipse Dev · Subclipse Users · this month's index

Re: Subversion + SSL + Client Certificate Authentication

From: Mukund <mukund_at_tessna.com>
Date: 2003-08-11 15:25:06 CEST

On Mon, Aug 11, 2003 at 01:33:29PM +0100, Chris Croome wrote:
| Hi
| On Mon 11-Aug-2003 at 02:14:52PM +0200, Mirko Buholzer wrote:
| >
| > I am just wondering if it is possible to access a Subversion
| > Repository via HTTPS/SSL connection?
| Sure, it works fine :-)
| The only thing that is a bit of a pain is if you have a self
| generated certificate and a host name mismatch you keep getting
| prompted about this, a 'stop warning about this' opetion would be
| nice!

This is bad for a variety of reasons. Generate and use server
certificates which match with the hostname. Or else, you are defeating
the very reason for using SSL. Encryption without authenticity in SSL is
as good as nothing. Certain clients also expect the IP address of the
server to match both ways with the DNS name.


To unsubscribe, e-mail: users-unsubscribe@subversion.tigris.org
For additional commands, e-mail: users-help@subversion.tigris.org
Received on Mon Aug 11 15:26:51 2003

This is an archived mail posted to the Subversion Users mailing list.