[Dev] CVS to SVN conversion plans
Heikki Toivonen
heikki at osafoundation.org
Tue May 24 12:36:37 PDT 2005
> No. Or actually, unlikely. When using client certificates (really,
> mutually authenticated SSL), you typically have a password for your
> private key. And typically software that deals mainly with security will
> be very careful with how it uses passwords. So, the password to unlock
> the private key will not be stored in clear text, and can be handled
> securely.
I should point out that I have actually not looked at how svn clients
handle https and client certs. If it turns out they store your private
key password in clear text, then pje is right and this is (almost) a
moot point. You'd still gain: no password on the server.
--
Heikki Toivonen
-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 249 bytes
Desc: OpenPGP digital signature
Url : http://lists.osafoundation.org/pipermail/dev/attachments/20050524/6fce84f1/signature.bin
More information about the Dev
mailing list