On Tue, Aug 10, 2010 at 11:12:25PM +0200, Branko Čibej wrote: > The issue isn't storing passwords, but storing them insecurely, i.e., in > plaintext on disk. Which is what Subversion does by default unless it
Not "by default" anymore. As of 1.6.0, the default is to *ask* the user whether storing passwords in plaintext is OK. That is very different to just storing passwords in plaintext by default. > I think it's perfectly valid for a shop to force its users to store > passwords securely, but I wonder if server-side configuration is the way > to do it -- I'd rather expect them to provide the right sort of client > for the right sort of system. I'm wondering about the same question. See my earlier response upthread: http://svn.haxx.se/dev/archive-2010-08/0180.shtml > On 10.08.2010 20:57, Greg Hudson wrote: > > (*) Actually, on consideration, there was some flap about the "okay to > > print" flag in PDF documents, or something related to that. I can't > > remember how it turned out. There are patches for xpdf that disable all of its DRM features. That's how it turned out. Stefan
