Re: do without .netrc - Jürgen Mangler

All of lore.kernel.org
 help / color / mirror / Atom feed

From: "Jürgen Mangler" <juergen.mangler@univie.ac.at>
To: Miklos Vajna <vmiklos@frugalware.org>, git@vger.kernel.org
Subject: Re: do without .netrc
Date: Fri, 08 Aug 2008 17:36:16 +0200	[thread overview]
Message-ID: <489C67F0.6090609@univie.ac.at> (raw)
In-Reply-To: <48998AC7.20204@univie.ac.at>

> The advantages for me would be:
> 
> a) I have multiple different passwords on the same server for different 
> directories, it's not possible to put this to a netrc (AS FAR AS I 
> KNOW). So i have to edit the netrc for every push, clone, ... -> very 
> inconvenient
> b) secondly (maybe not a super valid argument for you): netrc is not 
> considered to be the most secure thing, isn't it? Our network is invaded 
> every year "tested" by thousands of computer science students, so i 
> always try to have as few plain-text passwords as possible lying around 
> (one never knows - yes netrc has 0600).
> 
> i'd also prefer not to use the user:pass@server schema, but to be asked, 
> to not show pass in the history and config file in .git although even 
> user:pass@server would be an advantage because it solves a).

Valid solutions would therefore include:

* allow http://user@server urls, and ask user for password (A-rated)
* provide for http.basic.user and http.basic.pass in .git/config file 
(B-rated, one has to take care about the security of his config file)
* allow http://user:pass@server urls (C-rated, the consequences have 
been discussed on this list several times)

Jürgen

     prev parent reply	other threads:[~2008-08-08 15:37 UTC|newest]

Thread overview: 6+ messages / expand[flat|nested]  mbox.gz  Atom feed  top
2008-08-05 23:00 do without .netrc Jürgen Mangler
2008-08-06  8:50 ` Miklos Vajna
2008-08-06  9:17   ` Michael J Gruber
2008-08-06 10:50     ` Miklos Vajna
2008-08-06 11:28   ` Jürgen Mangler
2008-08-08 15:36     ` Jürgen Mangler [this message]

Reply instructions:

You may reply publicly to this message via plain-text email
using any one of the following methods:

* Save the following mbox file, import it into your mail client,
  and reply-to-all from there: mbox

  Avoid top-posting and favor interleaved quoting:
  https://en.wikipedia.org/wiki/Posting_style#Interleaved_style

* Reply using the --to, --cc, and --in-reply-to
  switches of git-send-email(1):

  git send-email \
    --in-reply-to=489C67F0.6090609@univie.ac.at \
    --to=juergen.mangler@univie.ac.at \
    --cc=git@vger.kernel.org \
    --cc=vmiklos@frugalware.org \
    /path/to/YOUR_REPLY

  https://kernel.org/pub/software/scm/git/docs/git-send-email.html

* If your mail client supports setting the In-Reply-To header
  via mailto: links, try the mailto: link

Be sure your reply has a Subject: header at the top and a blank line before the message body.

This is an external index of several public inboxes,
see mirroring instructions on how to clone and mirror
all data and code used by this external index.