You are viewing a plain text version of this content. The canonical link for it is here.

Posted to dev@subversion.apache.org by Sander Roobol <ph...@wanadoo.nl> on 2003/06/03 14:48:39 UTC

Re: Small, picky patch

On Tue, May 27, 2003 at 06:02:20AM -0500, Eric M. Hopper wrote:
> The message about the security of the ssl overrides is overly alarmist. 
> The only ssl- options that cause security problems in the servers config
> file are the ssl-ignore ones.
> 
> I, personally, think that global CAs are next to useless, so specifying
> your own allowed certificate list, or your own allowed CA is fine, and
> doesn't decrease security at all.  And specifying a client certificate
> _certainly_ doesn't decrease security.
> 
> Attached is a patch that fixes the wording.

Filed as issue #1344.

Sander

---------------------------------------------------------------------
To unsubscribe, e-mail: dev-unsubscribe@subversion.tigris.org
For additional commands, e-mail: dev-help@subversion.tigris.org