[svn.haxx.se] · SVN Dev · SVN Users · SVN Org · TSVN Dev · TSVN Users · Subclipse Dev · Subclipse Users · this month's index

Fwd: how can I change my password by SVN client?

From: Nico Kadel-Garcia <nkadel_at_gmail.com>
Date: Fri, 11 Sep 2009 07:59:16 -0400

[ accidentally replied only to Les ]

On Tue, Sep 8, 2009 at 9:03 AM, Les Mikesell <lesmikesell_at_gmail.com> wrote:

> They just use their own login/password to establish who they are so either
> apache or svn path based access control should work and logging works as you
> would expect.  They just can't get in at all unless they have a certificate
> from the trusted authority that hasn't been revoked.  I haven't used this
> scheme myself but I believe another part of my company does - probably using
> Novell's certificate management to mesh with their Notes ids.  I assume that
> anything capable of doing https these days can handle client certificates -
> including whatever libraries the svn clients use.

OK, color me still sad. The SSL key controls site access to the web
services, but you still wind up using password authentication to
Subversion and thus still wind up with passwords in $HOME/.svn/auth
for non-Windows clients? Then this scheme protects the Subversion
server at the expense of security for anything else that uses the same

Or do I misunderstand what you mean by "use theor own
login/passwords"? If it's unlocking the SSL key, how are they
retaining the unlocked state for additional Subversion operations in
the same session?


To unsubscribe from this discussion, e-mail: [users-unsubscribe_at_subversion.tigris.org].
Received on 2009-09-11 14:00:11 CEST

This is an archived mail posted to the Subversion Users mailing list.

This site is subject to the Apache Privacy Policy and the Apache Public Forum Archive Policy.