Re: How to set up SVN client/server so that Active Directory password is not compromised?

From: Andy Levy <andy.levy_at_gmail.com>
Date: 2006-07-27 18:55:27 CEST

On 7/27/06, Keith and Teri Kwiatek <kwiatekfamily@gmail.com> wrote:

> I currently run apache https with WebDAV and subversion.... I am just using
> htaccess to authenticate. And I notice that the SVN client caches the
> password (supposedly encrypted)

You can check for yourself whether the credentials are "supposedly"
encrypted or "truly" encrypted - the code's open. Credentials are
cached in %APPDATA%\Subversion (on Windows) by default.

Documentation of the feature is located at
http://svnbook.red-bean.com/nightly/en/svn.serverconfig.netmodel.html#svn.serverconfig.netmodel.credcache
(and it does note that the creds are encrypted, using Windows' own
crypto APIs on Win2K and up) - basically, to get at the cached
password, one must know the password (or access the system while the
owner of the password is logged in - physical security is well outside
the scope of Subversion, however).

---------------------------------------------------------------------
To unsubscribe, e-mail: users-unsubscribe@subversion.tigris.org
For additional commands, e-mail: users-help@subversion.tigris.org
Received on Thu Jul 27 18:56:53 2006

This message: [ Message body ]
Next message: Ryan Schmidt: "Re: Statistics: Code lines removed, added, changed"
Previous message: Tom Vaughan: "Re: use svnadmin to set revision number?"
In reply to: Keith and Teri Kwiatek: "How to set up SVN client/server so that Active Directory password is not compromised?"

Contemporary messages sorted: [ By Date ] [ By Thread ] [ By Subject ] [ By Author ] [ By messages with attachments ]