You are viewing a plain text version of this content. The canonical link for it is here.
Posted to users@subversion.apache.org by "Stallard,David" <st...@oclc.org> on 2009/05/04 15:37:31 UTC
Bypassing encryption warning?
If I'm understanding the 1.6.1 notes correctly, if you don't have GNOME
Keyring or KRE KWallet set up (for a linux install), then all users are
going to get the warning about storing their password unencrypted when
they first use the new version. Is it possible to configure subversion
to essentially make the encrypted/unencrypted decision for them so that
the "store unencrypted?" warning message won't appear for anyone?
------------------------------------------------------
http://subversion.tigris.org/ds/viewMessage.do?dsForumId=1065&dsMessageId=2057539
To unsubscribe from this discussion, e-mail: [users-unsubscribe@subversion.tigris.org].
Re: Bypassing encryption warning?
Posted by Stefan Sperling <st...@elego.de>.
On Tue, May 05, 2009 at 10:31:19AM -0400, Stallard,David wrote:
> > > On Mon, May 04, 2009 at 11:37:31AM -0400, Stallard,David wrote:
> > > If I'm understanding the 1.6.1 notes correctly, if you don't have
> GNOME
> > > Keyring or KRE KWallet set up (for a linux install), then all
> users are
> > > going to get the warning about storing their password unencrypted
> when
> > > they first use the new version. Is it possible to configure
> subversion to
> > > essentially make the encrypted/unencrypted decision for them so
> that the
> > > "store unencrypted?" warning message won't appear for anyone?
> >
> > Yes. And the prompt itself even says how it can be done :)
> >
> > It says:
> >
> > You can avoid future appearances of this warning by setting the
> value
> > of the 'store-plaintext-passwords' option to either 'yes' or 'no'
> in
> > '/home/user/.subversion/servers'.
> >
> > And of course, you can also set this option in /etc/subversion/config,
> to provide a default for all users.
> >
> > Stefan
>
> The solution mentioned in the prompt requires a change to each user's
> 'servers' file individually. I was looking for a solution to set the
> default for all users. You mention that this is possible but I haven't
> been able to find where this is configured.
Sorry, I meant /etc/subversion/servers, not /etc/subversion/config.
/etc/subversion/servers is a system-wide configuration file, which
contains configuration directives on a per-server basis, and you
can also configure the default behaviour for all servers in there.
If the file does not exist on your system, just create it.
Something like this in /etc/subversion/servers should work:
[global]
store-plaintext-passwords = no
This would configure the global default behaviour for connections
to any server to not storing any plaintext passwords.
For more information and examples, see the ~/.subversion/servers
configuration file created by Subversion inside every user's home
directory. It has plenty of comments that explain what is going on.
You can copy one of those files to /etc/subversion/servers to make
the settings system-wide.
Stefan
Re: Bypassing encryption warning?
Posted by Stefan Sperling <st...@elego.de>.
On Mon, May 04, 2009 at 11:37:31AM -0400, Stallard,David wrote:
> If I'm understanding the 1.6.1 notes correctly, if you don't have GNOME
> Keyring or KRE KWallet set up (for a linux install), then all users are
> going to get the warning about storing their password unencrypted when
> they first use the new version. Is it possible to configure subversion to
> essentially make the encrypted/unencrypted decision for them so that the
> "store unencrypted?" warning message won't appear for anyone?
Yes. And the prompt itself even says how it can be done :)
It says:
You can avoid future appearances of this warning by setting the value
of the 'store-plaintext-passwords' option to either 'yes' or 'no' in
'/home/user/.subversion/servers'.
And of course, you can also set this option in /etc/subversion/config,
to provide a default for all users.
Stefan