Fwd: how can I change my password by SVN client?

[ accidentally replied only to Les ]

On Tue, Sep 8, 2009 at 9:03 AM, Les Mikesell <lesmikesell_at_gmail.com> wrote:

> They just use their own login/password to establish who they are so either
> apache or svn path based access control should work and logging works as you
> would expect.  They just can't get in at all unless they have a certificate
> from the trusted authority that hasn't been revoked.  I haven't used this
> scheme myself but I believe another part of my company does - probably using
> Novell's certificate management to mesh with their Notes ids.  I assume that
> anything capable of doing https these days can handle client certificates -
> including whatever libraries the svn clients use.

OK, color me still sad. The SSL key controls site access to the web
services, but you still wind up using password authentication to
Subversion and thus still wind up with passwords in $HOME/.svn/auth
for non-Windows clients? Then this scheme protects the Subversion
server at the expense of security for anything else that uses the same
passwords.

Or do I misunderstand what you mean by "use theor own
login/passwords"? If it's unlocking the SSL key, how are they
retaining the unlocked state for additional Subversion operations in
the same session?

------------------------------------------------------
http://subversion.tigris.org/ds/viewMessage.do?dsForumId=1065&dsMessageId=2393592

To unsubscribe from this discussion, e-mail: [users-unsubscribe_at_subversion.tigris.org].
Received on 2009-09-11 14:00:11 CEST