Re: Psaswords

From: Stephan Holl <holl_at_gdf-hannover.de>
Date: 2005-10-14 12:35:48 CEST

Hello Dimitri,

On Fri, 14 Oct 2005 11:50:21 +0200 Dimitri Papadopoulos-Orfanos
<papadopo@shfj.cea.fr> wrote:

> Hi,
>
> > Any options to make the password-storage on the client more secure?
> > I would like to see this files not world-readable. Is this possible
> > by default?
>
> This is covered by the FAQ:
> http://subversion.tigris.org/faq.html#plaintext-passwords
>
> First of all, notice that the directory which contains the
> cached passwords (usually ~/.subversion/auth/ on Unix systems)
> has permissions of 700, meaning only you can read them. Trust
> your OS to protect data on disk.
>
> Can you confirm the passwords are actually world readable in youre
> case?

Nope. I was irritated that the files _inside_ ./subversion/auth/ have
world-read-bits set, but cannot accessed because the folder auth has
more restrictive rights.

So false alarm and thank you guys for clearing this up.

Best
Stephan

-- 
GDF Hannover - Solutions for spatial data analysis and remote sensing
Hannover Office      -     Mengendamm 16d      -     D-30177 Hannover
Internet: www.gdf-hannover.de      -      Email: holl@gdf-hannover.de
Phone : ++49-(0)511.39088507       -        Fax: ++49-(0)511.39088508
---------------------------------------------------------------------
To unsubscribe, e-mail: users-unsubscribe@subversion.tigris.org
For additional commands, e-mail: users-help@subversion.tigris.org

Received on Fri Oct 14 12:42:09 2005

This message: [ Message body ]
Next message: Stephan Holl: "Re: confirm unsubscribe from users@subversion.tigris.org"
Previous message: Lev Serebryakov: ""Lightweight" externals - is it possible?"
In reply to: Dimitri Papadopoulos-Orfanos: "Re: Psaswords"
Next in thread: Roland Schwingel: "Re: Psaswords"

Contemporary messages sorted: [ By Date ] [ By Thread ] [ By Subject ] [ By Author ] [ By messages with attachments ]