On Mar 27, 2012 12:52 PM, "Stefan Sperling" wrote:
>
> On Tue, Mar 27, 2012 at 11:46:50AM -0400, Greg Stein wrote:
> > On Mar 27, 2012 10:10 AM, "Markus Schaber"
> > > I hope that expert really is an expert.
> >
> > Yes, he is. John Viega.
>
> Funny how both of your wikipedia entries mention MUD.
On Tue, Mar 27, 2012 at 11:46:50AM -0400, Greg Stein wrote:
> On Mar 27, 2012 10:10 AM, "Markus Schaber"
> > I hope that expert really is an expert.
>
> Yes, he is. John Viega.
Funny how both of your wikipedia entries mention MUD.
Perhaps the upcoming generation of hackers will have first met i
Hi, Greg,
Von: Greg Stein [mailto:gst...@gmail.com]
> On Tue, Mar 27, 2012 at 12:23, Markus Schaber
> wrote:
> > Von: Greg Stein [mailto:gst...@gmail.com]
> >> On Mar 27, 2012 12:55 AM, "Daniel Shahaf" wrote:
> >> >...
> >> > > On 27.03.2012 05:23, Greg Stein wrote:
> >> > > >...
> >> > > > Whi
On Tue, Mar 27, 2012 at 12:23, Markus Schaber wrote:
> Von: Greg Stein [mailto:gst...@gmail.com]
>>On Mar 27, 2012 12:55 AM, "Daniel Shahaf" wrote:
>> >...
>> > > On 27.03.2012 05:23, Greg Stein wrote:
>> > > >...
>> > > > While discussing this on IRC some, I did think of one case where you
>> >
Hi,
Von: Greg Stein [mailto:gst...@gmail.com]
>On Mar 27, 2012 12:55 AM, "Daniel Shahaf" wrote:
> >...
> > > On 27.03.2012 05:23, Greg Stein wrote:
> > > >...
> > > > While discussing this on IRC some, I did think of one case where you
> > > > want to know they got the correct master passphrase:
On Mar 27, 2012 12:55 AM, "Daniel Shahaf" wrote:
>...
> > On 27.03.2012 05:23, Greg Stein wrote:
> > >...
> > > While discussing this on IRC some, I did think of one case where you
> > > want to know they got the correct master passphrase: when they are
> > > updating a server's password. A mis-en
On Mar 27, 2012 10:10 AM, "Markus Schaber"
wrote:
>
> Hi, Gregs,
>
> Von: Greg Stein [mailto:gst...@gmail.com]
>
> > On Mon, Mar 26, 2012 at 11:45, Greg Hudson wrote:
> > >...
> > > Unfortunately, there's more complexity in an encrypted password store
> > >than you probably anticipated, and it's
Hi, Gregs,
Von: Greg Stein [mailto:gst...@gmail.com]
> On Mon, Mar 26, 2012 at 11:45, Greg Hudson wrote:
> >...
> > Unfortunately, there's more complexity in an encrypted password store
> >than you probably anticipated, and it's definitely possible to lose
> >some or most of your intended securi
Branko Čibej wrote on Tue, Mar 27, 2012 at 05:29:59 +0200:
> On 27.03.2012 05:23, Greg Stein wrote:
> > On Mon, Mar 26, 2012 at 21:05, Branko Čibej wrote:
> >> On 26.03.2012 17:45, Greg Hudson wrote:
> >>> On 03/26/2012 09:00 AM, C. Michael Pilato wrote:
> The on-disk cache will contain every
Branko Čibej wrote on Tue, Mar 27, 2012 at 03:05:12 +0200:
> On 26.03.2012 17:45, Greg Hudson wrote:
> > On 03/26/2012 09:00 AM, C. Michael Pilato wrote:
> >> The on-disk cache will contain everything it does today where
> >> plaintext caching is enabled, save that the password won't be
> >> plaint
On 27.03.2012 05:23, Greg Stein wrote:
> On Mon, Mar 26, 2012 at 21:05, Branko Čibej wrote:
>> On 26.03.2012 17:45, Greg Hudson wrote:
>>> On 03/26/2012 09:00 AM, C. Michael Pilato wrote:
The on-disk cache will contain everything it does today where
plaintext caching is enabled, save tha
On Mon, Mar 26, 2012 at 21:05, Branko Čibej wrote:
> On 26.03.2012 17:45, Greg Hudson wrote:
>> On 03/26/2012 09:00 AM, C. Michael Pilato wrote:
>>> The on-disk cache will contain everything it does today where
>>> plaintext caching is enabled, save that the password won't be
>>> plaintext, and th
On 26.03.2012 17:45, Greg Hudson wrote:
> On 03/26/2012 09:00 AM, C. Michael Pilato wrote:
>> The on-disk cache will contain everything it does today where
>> plaintext caching is enabled, save that the password won't be
>> plaintext, and there will be a bit of known encrypted text (for
>> passphra
Oh... just saw this. I already updated the wiki page with some stuff
based on another project that I'm working on. The design points in
there were provided by a security expert friend of mine. More below:
On Mon, Mar 26, 2012 at 11:45, Greg Hudson wrote:
>...
> Unfortunately, there's more complex
On 03/26/2012 09:00 AM, C. Michael Pilato wrote:
> The on-disk cache will contain everything it does today where
> plaintext caching is enabled, save that the password won't be
> plaintext, and there will be a bit of known encrypted text (for
> passphrase validation).
Is it important to be able to
"C. Michael Pilato" writes:
> On 03/26/2012 09:08 AM, Daniel Shahaf wrote:
>> How would you implement encryption? We don't currently have encryption
>> code in the core.
>
> Correct. We'd need to pull in additional dependencies that have freely
> available implementations on all our supported p
On 03/26/2012 09:08 AM, Daniel Shahaf wrote:
> How would you implement encryption? We don't currently have encryption
> code in the core.
Correct. We'd need to pull in additional dependencies that have freely
available implementations on all our supported platforms. Blowfish, 3DES,
or somesuch.
C. Michael Pilato wrote on Mon, Mar 26, 2012 at 09:00:19 -0400:
> On 03/25/2012 12:48 PM, Daniel Shahaf wrote:
> > C. Michael Pilato wrote on Fri, Mar 23, 2012 at 12:21:20 -0400:
> >> But the benefits to the developers will be noticeable. Currently, the use
> >> of the various "outsourced" provide
On 03/25/2012 12:48 PM, Daniel Shahaf wrote:
> C. Michael Pilato wrote on Fri, Mar 23, 2012 at 12:21:20 -0400:
>> But the benefits to the developers will be noticeable. Currently, the use
>> of the various "outsourced" providers is a mess. Every time we want to add
>> a new provider, we have to a
C. Michael Pilato wrote on Fri, Mar 23, 2012 at 12:21:20 -0400:
> But the benefits to the developers will be noticeable. Currently, the use
> of the various "outsourced" providers is a mess. Every time we want to add
> a new provider, we have to add flavors of it for all the various keyrings
> an
On 03/23/2012 11:59 AM, Markus Schaber wrote:
>> I hear ya. Please read the design doc:
>> http://wiki.apache.org/subversion/MasterPassphrase
>
> I did, but it seems the statement regarding the agents was not explicit
> enough for my first try. Now, when reading it again, it works better.
> :-)
Hi, Michael,
> Von: C. Michael Pilato [mailto:cmpil...@collab.net]
> > On 03/22/2012 01:02 PM, Daniel Shahaf wrote:
> >>> Is it now time to review the design doc on the wiki? I've been
> >>> assuming it's WIP as I haven't seen a dev@ mail about this feature.
> >
> >> Review on the design doc is w
On 03/23/2012 10:28 AM, Markus Schaber wrote:
> Hi,
>
> Just my 5 ct:
>
> On 03/22/2012 01:02 PM, Daniel Shahaf wrote:
>>> Is it now time to review the design doc on the wiki? I've been
>>> assuming it's WIP as I haven't seen a dev@ mail about this feature.
>
>> Review on the design doc is wel
_projects
Managing Directors: Dipl.Inf. Dieter Hess, Dipl.Inf. Manfred Werner | Trade
register: Kempten HRB 6186 | Tax ID No.: DE 167014915
-Ursprüngliche Nachricht-
Von: C. Michael Pilato [mailto:cmpil...@collab.net]
Gesendet: Donnerstag, 22. März 2012 18:30
An: Daniel Shahaf
Cc: dev@subve
On 03/22/2012 01:02 PM, Daniel Shahaf wrote:
> Is it now time to review the design doc on the wiki? I've been assuming
> it's WIP as I haven't seen a dev@ mail about this feature.
Review on the design doc is welcome, yes. I started to explicitly solicit
as much, but I found myself in one of thos
Is it now time to review the design doc on the wiki? I've been assuming
it's WIP as I haven't seen a dev@ mail about this feature.
cmpil...@tigris.org wrote on Thu, Mar 22, 2012 at 09:48:15 -0700:
> http://subversion.tigris.org/issues/show_bug.cgi?id=4145
>
>
>
> User cmpilato changed the foll
26 matches
Mail list logo
