发表新帖
发表新帖

SVN encrypted password store

前端 未结
关注
3 1900
孤独总比滥情好
孤独总比滥情好 2021-01-30 15:39

I installed SVN on a Ubuntu machine and I can\'t get my head around something.

Whenever I checkout something from the terminal I get this error about saving a non-encryp

3条回答
  • 庸人自扰
    庸人自扰 (楼主)
    2021-01-30 16:01

    By encrypting the password, you will not be able to achieve non-repudiation (other users could use your hash as you) due to OS file permissions. However, most companies have subversion setup using their domain password or some form of SSO password. By encrypting the password, you would at least mask someone from accessing a users other accounts.

    I would still be concerned about the encryption strength. If the subversion password is linked to other important accounts, someone might test the encryption strength to crack the password out.

    The best bet is to setup the subversion client to turn off stored passwords and force lazy Dev's to authenticate each time.

    0 讨论(0)
 看不清?
提交回复
热议问题