What's the simplest configuration of SVN on a Windows Server to avoid plain text password storage?

Posted by detly on Server Fault See other posts from Server Fault or by detly
Published on 2012-06-19T01:35:45Z Indexed on 2012/06/19 3:17 UTC
Read the original article Hit count: 433

Filed under:
|

I have an SVN 1.6 server running on a Windows Server 2003 machine, served via CollabNet's svnserve running as a service (using the svn protocol). I would like to avoid storing passwords in plain text on the server. Unfortunately, the default configuration and SASL with DIGEST-MD5 both require plain text password storage.

What is the simplest possible way to avoid storing passwords in plain text?

My constraints are:

  • Path-based access control to the SVN repository needs to be possible (currently I can use an authz file). As far as I know, this is more-or-less independent of the authentication method.
  • Active directory is available, but it's not just domain-connected windows machines that need to authenticate: workgroup PCs, Linux PCs and software that uses PySVN to perform SVN operations all need to be able to access the repositories.

Upgrading the SVN server is feasible, as is installing additional software.

© Server Fault or respective owner

Related posts about windows-server-2003

Related posts about svn