----- Original Message -----
From: "David Everly" <deckrider@gmail.com>
To: <kfogel@google.com>; <users@subversion.tigris.org>
Sent: Monday, August 14, 2006 6:41 PM
Subject: Re: password collection issues
> Hi Karl, thanks for responding.
>
> It is looking to us like the issue is in HP-UX getpass(), whose man
> page indicates that it truncates what is entered to the first 8
> characters. This is from within apr, whose configure tests could not
> find getpassphrase, but only getpass.
>
> For our purposes, I'm editing the configure script for apr to not
> check for getpass, so that apr is forced to use its internally
> provided mechanism.
Why not use ssh+svnserve? Given that many Subversion clients (not all!)
store your Subversion password, unencrypted, in your local directory when
you do checkouts, any use of a typical LDAP or NIS single-sign-on system
will store your passwords in your local configurations, it's an easy way to
forget about the security risk and have your password stolen.
The burden of using an SSH+SVNserve setup is pretty modest, and in my
opinion more reliable.
---------------------------------------------------------------------
To unsubscribe, e-mail: users-unsubscribe@subversion.tigris.org
For additional commands, e-mail: users-help@subversion.tigris.org
Received on Tue Aug 15 01:53:06 2006