On 11/15/06, Andrej Kudriavcev <andrej@ntsg.lt> wrote:
> Hello,
>
> I recently configured Subversion to work with Apache and WebDAV on
> FreeBSD. I created a repo, export it Apache (as described in How-to) and
> protect it with http passwords. I am not familiar with WebDAV protocol,
> so would like to ask - should I add something to protect my server? Or
> WebDAV default instaliation will be secure enough and will not give
> access to anything except my repo?
You're no more (or just as) exposed as with any other HTTP server that
does authentication. Since you're transmitting IDs & passwords, you
should at a minimum use Digest authentication instead of Basic, or
even better use HTTPS (SSL)
---------------------------------------------------------------------
To unsubscribe, e-mail: users-unsubscribe@subversion.tigris.org
For additional commands, e-mail: users-help@subversion.tigris.org
Received on Wed Nov 15 14:32:57 2006