[svn.haxx.se] · SVN Dev · SVN Users · SVN Org · TSVN Dev · TSVN Users · Subclipse Dev · Subclipse Users · this month's index

Re: Question about svnserve and security

From: Ivan Aleman <bonovoxmofo_at_gmail.com>
Date: 2006-09-18 20:00:07 CEST

> to find a definitive answer. How secure is the custon protocol svnserve? I
> know it uses CRAM-MD5 so the password never goes out on the wire in the
> clear, and it seems that many, or most people use it with SSH to provide an
> encrypted tunnel. What we want to do is just open up the port for svnserve
> and NOT use SSH. We do not care if the data is encrypted or not, we do care
> if the password goes over the wire though.
> How much of a risk is just providing direct access to the svnserve port?
Describe your scenario, are you guys planning to use http, your team
is working inside a LAN or is your team located in different places
(countries / states) ?

Maybe this links will help you


Iván Alemán ~ [[ Debian (Sid) ]] ~
Version: 3.12
G!>GCM d+ s: a? C+++ UL++ P L+>+++$ E--- W++>+ N* o--- K- w O- M+ V--
PS++ PE-- Y PGP+>++ t-- 5 X R+ !tv b++ DI-- D+++ G+ e++ h* r+ z*>*$
To unsubscribe, e-mail: users-unsubscribe@subversion.tigris.org
For additional commands, e-mail: users-help@subversion.tigris.org
Received on Mon Sep 18 20:00:57 2006

This is an archived mail posted to the Subversion Users mailing list.