[svn.haxx.se] · SVN Dev · SVN Users · SVN Org · TSVN Dev · TSVN Users · Subclipse Dev · Subclipse Users · this month's index

Re: Authentication - storing of passwords in ~/.subversion/auth/svn.simple

From: Ben Collins-Sussman <sussman_at_collab.net>
Date: 2003-09-19 14:03:07 CEST

Roland Schwingel <Roland.Schwingel@onevision.de> writes:

> Roland, who is not wanting to start an ideologic war here, just noticing a
> (in my eyes) security design flaw.

There's no security flaw here; this has been discussed many times in
the past. ~/.subversion/auth/ is set to chmod 700. That means no
spying eyes can look at your cached cleartext passwords.

If you don't want the caching to happen at all, just set

store-password = no

...in your ~/.subversion/config file. End of story.

To unsubscribe, e-mail: users-unsubscribe@subversion.tigris.org
For additional commands, e-mail: users-help@subversion.tigris.org
Received on Fri Sep 19 14:04:09 2003

This is an archived mail posted to the Subversion Users mailing list.

This site is subject to the Apache Privacy Policy and the Apache Public Forum Archive Policy.