I don't see how that's "unforgivable". Trust your OS to properly enforce
security as per your configuration. If you don't do that, I'd recommend
that you unplug your computer and store it in a closet.
-----Original Message-----
From: Nico Kadel-Garcia [mailto:nkadel@comcast.net]
Sent: Monday, July 03, 2006 6:41 PM
To: Garrett Rooney
Cc: Ulrich Eckhardt; users@subversion.tigris.org
Subject: Re: Configuration recommendations in a heterogenous Linux
environment?
Garrett Rooney wrote:
> On 7/3/06, Nico Kadel-Garcia <nkadel@comcast.net> wrote:
>> Ulrich Eckhardt wrote:
>>
>>> - svnserve is dead easy to setup and offers some basic
>>> authentication.
>>
>> As much as I like Subversion, I consider svnserve one of its great
>> flaws. Svnserve does not allow storage of encrypted passwords, only
>> plaintext, and relies on plaintext transmission of those passwords.
>
> Uhh, that's pure bullshit, the transmission of the passwords is via
> CRAM-MD5, it is never sent over the wire as plaintext. Please
> investigate these things before you form an opinion. The storage of
> passwords is plainext, but their transmission is not.
Is it? Good! But it's still plain-text storage, and that's still
unforgivable.
---------------------------------------------------------------------
To unsubscribe, e-mail: users-unsubscribe@subversion.tigris.org
For additional commands, e-mail: users-help@subversion.tigris.org
---------------------------------------------------------------------
To unsubscribe, e-mail: users-unsubscribe@subversion.tigris.org
For additional commands, e-mail: users-help@subversion.tigris.org
Received on Tue Jul 4 01:34:36 2006