Re: Secure svnserve?

From: Stefan Sperling <stsp_at_elego.de>
Date: Fri, 25 Nov 2016 11:46:30 +0100

On Fri, Nov 25, 2016 at 11:37:10AM +0100, Branko Čibej wrote:
> On 25.11.2016 11:33, Stefan Sperling wrote:
> > On Fri, Nov 25, 2016 at 11:11:15AM +0100, Olaf van der Spek wrote:
> >> Wouldn't it be good if svnserve supported encryption directly?
> > svnserve does support encryption directly, but not with TLS.
> > Instead, it uses SASL for this purpose.
>
> Um. SASL is used for authentication. The actual svnserve protocol stream
> remains unencrypted.
>
> -- Brane

"SASL is also able to perform data encryption if a particular
mechanism supports it."
http://svnbook.red-bean.com/nightly/en/svn.serverconfig.svnserve.html#svn.serverconfig.svnserve.sasl

I'm not saying SASL wasn't a pain to set up, or that DIGEST-MD5 was
very secure. But the mechanism exists and is advertised in the docs.
Received on 2016-11-25 11:46:38 CET

This message: [ Message body ]
Next message: Branko Čibej: "Re: Secure svnserve?"
Previous message: Branko Čibej: "Re: Secure svnserve?"
In reply to: Branko Čibej: "Re: Secure svnserve?"
Next in thread: Branko Čibej: "Re: Secure svnserve?"
Reply: Branko Čibej: "Re: Secure svnserve?"

Contemporary messages sorted: [ by date ] [ by thread ] [ by subject ] [ by author ] [ by messages with attachments ]