RES: RES: RES: Using SSL

Hi,

I creat the file servers in /etc/subversion with:

[global]
#ssl-trust-default-ca = true
ssl-ignore-unknown-ca = true
ssl-authority-files = /etc/httpd/conf.d/certificados/intermediarios.cer

But, don't work.

Diego de Oliviera Fucitalo

HelpDesk

(12) 2139-1704

diego_at_gsw.com.br

-----Mensagem original-----
De: Johan Corveleyn [mailto:jcorvel_at_gmail.com]
Enviada em: sexta-feira, 7 de outubro de 2011 18:41
Para: Diego de Oliveira Fucitalo
Cc: users_at_subversion.apache.org
Assunto: Re: RES: RES: Using SSL

> On Friday 07 October 2011 09:17 PM, Diego de Oliveira Fucitalo wrote:
>
> Hi, after accept never ask .. but I would like configure for never ask

This is possible, but only if you have some control over the "client configuration" of your users (the so-called "Runtime Configuration Area"). In the "servers" file, you can set the property "ssl-authority-files" to a file containing trusted CA certificates [1]. There is also "ssl-trust-default-ca": "Set this variable to yes if you want Subversion to automatically trust the set of default CAs that ship with OpenSSL."

On *nix, you can configure this system-wide, in /etc/subversion/servers. On Windows, this can also be done system-wide (but only through the registry [2], I believe).

[1] http://svnbook.red-bean.com/en/1.6/svn.advanced.confarea.html#svn.advanced.confarea.opts.servers
[2] http://svnbook.red-bean.com/en/1.6/svn.advanced.confarea.html#svn.advanced.confarea.windows-registry

--
Johan