Re: Client side password safety (was: storing user passwords in non-cleartext form in password-db file)

From: Max Bowsher <maxb_at_ukf.net>
Date: 2004-10-25 20:18:48 CEST

John Rousseau wrote:
> Are there plans for implementing a secure client side storage mechanism?
> Something along the lines of ssh-agent would be ideal.
>
> We would love to back our subversion apache instance with Novell's
> corporate LDAP directory for authentication, but the presence of cleartext
> passwords on the client prevents us from doing this.
>
> In Max's previous post he states that using http[s]:// helps solve this
> problem, but unless we use SSL/TLS with client certificates, I don't see
> how.

We were talking about *server* side password safety, not client.

Max.

---------------------------------------------------------------------
To unsubscribe, e-mail: users-unsubscribe@subversion.tigris.org
For additional commands, e-mail: users-help@subversion.tigris.org
Received on Mon Oct 25 20:19:40 2004

This message: [ Message body ]
Next message: W J: "Re: storing user passwords in non-cleartext form in password-db file"
Previous message: Toby Johnson: "Re: HP-UX 11.11 compilation"
In reply to: John Rousseau: "Client side password safety (was: storing user passwords in non-cleartext form in password-db file)"

Contemporary messages sorted: [ By Date ] [ By Thread ] [ By Subject ] [ By Author ] [ By messages with attachments ]