https and Buckminster [message #3468] |
Wed, 13 February 2008 20:36 |
|
This posting concerns Buckminster committers only.
I've been having a dialog with Matt (webmaster at Eclipse) concerning https access to the
Buckminster SVN repository. Apparently there's an increased risk for malicious attacks when using
this protocol so it's not recommended unless we really have the need for it. The 'need' can be
categorized in two:
1. Need to use https because it's too damn hard to set up proper ssl handshake.
2. Need to use https because you're behind a firewall that doesn't permit ssl.
#1 is possible to overcome. In fact, we did add a pretty good web-page that explains how to do this
a while back. You can view it here:
http://wiki.eclipse.org/Committer_access_%28Buckminster%29
#2 is a real problem. But AFAIK, none of the committers to this project is in this position. If I'm
wrong and you are or expect to be in a near future, let me know.
For now, I will retract my request for https access to the Buckminster SVN.
Anonymous http access to our SVN is enabled as of today and it seems to work just fine.
Regards,
Thomas Hallgren
|
|
|
|
Powered by
FUDForum. Page generated in 0.03202 seconds