Jeff Rush wrote: > BTW, re SSH access on python.org, using Apache's SSL support re https would > provide as good of security without the risk of giving out shell accounts. > SSL would encrypt the link and require a password or permit cert auth > instead, same as SSH. Cert admin needn't be hard if only a single server > cert is used, with client passwords, instead of client certs.
That is the currently-proposed setup. However, with the current subversion clients, you will have to save your password to disk, or type it in every time. This is the real security disk: if somebody attacks the client machine, they get access to the python source repository. Regards, Martin _______________________________________________ Python-Dev mailing list Python-Dev@python.org http://mail.python.org/mailman/listinfo/python-dev Unsubscribe: http://mail.python.org/mailman/options/python-dev/archive%40mail-archive.com
