On Thu, Oct 16, 2008 at 4:45 PM, Ryan Schmidt <
subversion-2008c_at_ryandesign.com> wrote:
>
> On Oct 16, 2008, at 13:12, Robert Dailey wrote:
>
> On Thu, Oct 16, 2008 at 11:40 AM, wrote:
>>
>>> >I just don't like any of the current protocols:
>>> >
>>> >http --> too slow
>>> >https --> even more slow, difficult to setup
>>> >svn --> insecure, featureless, dull
>>>
>>>
>>> Dull? What does that mean? It works great and fast. And its security
>>> is fine for many cases, though certainly not for public servers.
>>>
>>>
>>> >svn+ssh --> pain in the ***, doesn't play well with TortoiseSVN.
>>>
>>>
>>> That's not true, it works fine. Take a look at Pageant (part of PuTTY)
>>> or an equivalent SSH key agent.
>>>
>>>
>>> I say it is dull because it is featureless. I have to edit a text file
>> to add uers, that's pretty dull and featureless to me.
>>
>
> How would you prefer to edit users? If your complaint is that there is not
> a GUI or web app to edit the file, then write one. It's just a text file;
> it's easy to write a program to edit it. (Though it's probably even easier
> to just edit the text file by hand.)
>
>
> Sure, it's fast, that's why I like it. But being fast doesn't make it the
>> greatest thing ever to me.
>>
>
> And yet your only complaint about http is that it's slow. So obviously
> speed is an important consideration for you.
>
>
> I think it's pretty nice that we have the option of a lean, simple server
> (svnserve) or a more full-featured server (apache). I think it's not
> unreasonable that more features come at the expense of some simplicity and
> speed. That said, svnserve continues to be improved and gain new features.
>
>
>
> And svn+ssh works fine for *you*. For me, I've had endless issues out of
>> the authentication dialog in TortoiseSVN (It not showing up, etc).
>>
>
>
>
>
I thought of one option that I think I would like very much.
Right now passwords are stored in passwd as raw text. Would it be possible
to hash the password or encrypt it somehow? This way I could send people a
small script to run where they type their desired password and send me the
generated hash value back in an email and I can create their account with
that password. This way I never actually know what password they chose. The
ultimate goal here is to be able to create svnserve accounts for users
without having to see their password.
Received on 2008-10-22 00:22:14 CEST