Re: do without .netrc - Jürgen Mangler

git.vger.kernel.org archive mirror
 help / color / mirror / Atom feed

From: "Jürgen Mangler" <juergen.mangler@univie.ac.at>
To: Miklos Vajna <vmiklos@frugalware.org>, git@vger.kernel.org
Subject: Re: do without .netrc
Date: Fri, 08 Aug 2008 17:36:16 +0200	[thread overview]
Message-ID: <489C67F0.6090609@univie.ac.at> (raw)
In-Reply-To: <48998AC7.20204@univie.ac.at>

> The advantages for me would be:
> 
> a) I have multiple different passwords on the same server for different 
> directories, it's not possible to put this to a netrc (AS FAR AS I 
> KNOW). So i have to edit the netrc for every push, clone, ... -> very 
> inconvenient
> b) secondly (maybe not a super valid argument for you): netrc is not 
> considered to be the most secure thing, isn't it? Our network is invaded 
> every year "tested" by thousands of computer science students, so i 
> always try to have as few plain-text passwords as possible lying around 
> (one never knows - yes netrc has 0600).
> 
> i'd also prefer not to use the user:pass@server schema, but to be asked, 
> to not show pass in the history and config file in .git although even 
> user:pass@server would be an advantage because it solves a).

Valid solutions would therefore include:

* allow http://user@server urls, and ask user for password (A-rated)
* provide for http.basic.user and http.basic.pass in .git/config file 
(B-rated, one has to take care about the security of his config file)
* allow http://user:pass@server urls (C-rated, the consequences have 
been discussed on this list several times)

Jürgen

     prev parent reply	other threads:[~2008-08-08 15:37 UTC|newest]

Thread overview: 6+ messages / expand[flat|nested]  mbox.gz  Atom feed  top
2008-08-05 23:00 do without .netrc Jürgen Mangler
2008-08-06  8:50 ` Miklos Vajna
2008-08-06  9:17   ` Michael J Gruber
2008-08-06 10:50     ` Miklos Vajna
2008-08-06 11:28   ` Jürgen Mangler
2008-08-08 15:36     ` Jürgen Mangler [this message]

Reply instructions:

You may reply publicly to this message via plain-text email
using any one of the following methods:

* Save the following mbox file, import it into your mail client,
  and reply-to-all from there: mbox

  Avoid top-posting and favor interleaved quoting:
  https://en.wikipedia.org/wiki/Posting_style#Interleaved_style

* Reply using the --to, --cc, and --in-reply-to
  switches of git-send-email(1):

  git send-email \
    --in-reply-to=489C67F0.6090609@univie.ac.at \
    --to=juergen.mangler@univie.ac.at \
    --cc=git@vger.kernel.org \
    --cc=vmiklos@frugalware.org \
    /path/to/YOUR_REPLY

  https://kernel.org/pub/software/scm/git/docs/git-send-email.html

* If your mail client supports setting the In-Reply-To header
  via mailto: links, try the mailto: link

Be sure your reply has a Subject: header at the top and a blank line before the message body.

This is a public inbox, see mirroring instructions
for how to clone and mirror all data and code used for this inbox;
as well as URLs for NNTP newsgroup(s).