[svn.haxx.se] · SVN Dev · SVN Users · SVN Org · TSVN Dev · TSVN Users · Subclipse Dev · Subclipse Users · this month's index

Re: Configuration recommendations in a heterogenous Linux environment?

From: John Rouillard <rouilj_at_renesys.com>
Date: 2006-07-04 04:49:05 CEST

On Mon, Jul 03, 2006 at 02:24:39PM -0400, Nico Kadel-Garcia wrote:
> Ulrich Eckhardt wrote:
> >- svnserve is dead easy to setup and offers some basic authentication.
>
> As much as I like Subversion, I consider svnserve one of its great flaws.
> Svnserve does not allow storage of encrypted passwords, only plaintext
> [...]
> This is why HTTPS is so much of an advantage: you rely on a well-known,
> well supported authentication method that keeps the passwords encrypted.

Interesting, I thought the https mode still stored the password (on
the client side not server side) in plain text format on disk. I got
this impressions from the section of
http://subversion.tigris.org/faq.html#plaintext-passwords that reads:

   With an svn 1.1 client or later, you can use the more narrowly-defined
   'store-passwords = no' (so that server certs are still cached.)

I understood the server was most likely ah https server.

The only non-plaintext password storage AFAIK is the ssh public key
method which we require use ssh-agent so that the keys are not kept on
disk unencrypted.

-- 
				-- rouilj
John Rouillard
System Administrator
Renesys Corporation
603-643-9300 x 111
---------------------------------------------------------------------
To unsubscribe, e-mail: users-unsubscribe@subversion.tigris.org
For additional commands, e-mail: users-help@subversion.tigris.org
Received on Tue Jul 4 04:50:35 2006

This is an archived mail posted to the Subversion Users mailing list.