[svn.haxx.se] · SVN Dev · SVN Users · SVN Org · TSVN Dev · TSVN Users · Subclipse Dev · Subclipse Users · this month's index

Re: svnserve + SASL: Only works with plaintext 'userPassword', so what's the point?

From: Donner, Sean P <sean.p.donner_at_lmco.com>
Date: Wed, 26 Jan 2011 19:08:55 -0700

> It's because of how CramMD5 works.
>
> "The server needs access to the users' plain text passwords."
> http://en.wikipedia.org/wiki/CRAM-MD5
>
> Stefan

Perhaps I'm wrong, but I was under the impression that the 1.6.x version of
'svnserve' natively supports CRAM-MD5; meaning you *don't* need to set
'use-sasl = true' to get this functionality. So my original question stands as
to what SASL is buying us when it still requires plain-text passwords to be
stored on the server?

-Sean
Received on 2011-01-27 03:10:14 CET

This is an archived mail posted to the Subversion Users mailing list.

This site is subject to the Apache Privacy Policy and the Apache Public Forum Archive Policy.