tag:blogger.com,1999:blog-6888322710677399759.post7408304763058382966..comments2022-04-05T17:31:44.032+06:00Comments on Deepwalker: Subversion 1.5 и SASLDeepwalkerhttp://www.blogger.com/profile/11174389329305818117noreply@blogger.comBlogger3125tag:blogger.com,1999:blog-6888322710677399759.post-14920970422323398432008-10-01T09:29:00.000+07:002008-10-01T09:29:00.000+07:00http://svn.collab.net/repos/svn/trunk/notes/sasl.t...http://svn.collab.net/repos/svn/trunk/notes/sasl.txt<BR/><BR/>8-ой пункт : )<BR/><BR/>8. GSSAPI<BR/>=========<BR/><BR/> The realm in svnserve.conf is your Kerberos authentation realm,<BR/> e.g. "EXAMPLE.COM". Cyrus's GSSAPI implementation does not support<BR/> encryption, except for very basic 56-bit DES. If you leave the encrypt<BR/> settings out of your svnserve.conf entirely, you're fine; just don't set<BR/> max-encryption higher than 56.<BR/><BR/> You need a Kerberos principal for each svn server, in the form<BR/> "svn/${SERVER_FQDN}@${REALM}", e.g. "svn/svn1.example.com@EXAMPLE.COM".<BR/> If you don't store it in /etc/krb5.keytab, you'll need to set the<BR/> KRB5_KTNAME environment variable when starting svnserve, e.g.<BR/><BR/> KRB5_KTNAME=/etc/svn.keytab sudo -u svn svnserve -d -r /svn<BR/><BR/> This keytab file must also be readable by the svnserve process.<BR/><BR/> All you need in the svn.conf file is:<BR/><BR/> mech_list: gssapi<BR/><BR/><BR/>Мой джаббер в профиле.Deepwalkerhttps://www.blogger.com/profile/11174389329305818117noreply@blogger.comtag:blogger.com,1999:blog-6888322710677399759.post-59681399607664565352008-09-30T16:55:00.000+07:002008-09-30T16:55:00.000+07:00Привет очень интересна связка Subversion 1.5 + SAS...Привет очень интересна связка Subversion 1.5 + SASL без использования апача т.е по родному протоколу SVN . может есть идеи ?Anonymousnoreply@blogger.comtag:blogger.com,1999:blog-6888322710677399759.post-84642887075978053452008-08-11T12:46:00.000+07:002008-08-11T12:46:00.000+07:00Привет, сам развернул инфраструктуру с kerberos, l...Привет, сам развернул инфраструктуру с kerberos, ldap и сервисами. Пишу howto. У тебя jabber есть?<BR/>Если нет, то можешь скинуть контакт письмом на crypt at hotbox dot ru.Anonymousnoreply@blogger.com