> -----Original Message-----
> From: Giulio Troccoli [mailto:Giulio.Troccoli_at_uk.linedata.com]
> Sent: donderdag 21 januari 2010 16:41
> To: users_at_subversion.apache.org
> Subject: Where are the plaintext passwords stored
> I always thought the passwords were stored in the .subversion/auth folder
> (I'm using Linux). And for plaintext passwords I expected to actually see
> there, is some files, in, well, plain text. But I don't. So, just out of
> don't store passwords anyway), where are they?
Looking at your e-mail headers, I guess you are using Windows.
On Windows (NT 4 and later) the passwords are stored in the auth folder, but
encrypted with the per user cryptographic key managed by the Windows
CryptoAPI. I think this feature was added around Subversion 1.3/1.4. Before
that and on other operating systems than Windows the password is stored in
there as plain text if there is no specific store available.
Since Subversion 1.6 you get a warning from svn when the password will be
stored as plain text.
Received on 2010-01-22 11:17:36 CET