[EMAIL PROTECTED] on 2000.07.25 00:14:41
>> If this wasn't a source of misunderstand, can you explain your point "I would
>> not like to see such an insecure mechanism become part of the main CVS
>> executable...".
>
>Did you or did you not specify that you wish authentication on the server side
to
>be based on a single username and password for all users and that a user name
to
>use for logging would then be sent by the client?
My original proposal specified that authentication exist completely outside of
CVS and that the CVS client would send the username to be used for logging.
This particular thread stated that if CVS were to do authentication, it should
be pluggable.
If I had implied that authentication be composed of username and password, I
apologize. Password authentication is only a subset of possible authentication
methods. CVS should not be limited in this respect.
Noel
This communication is for informational purposes only. It is not intended as
an offer or solicitation for the purchase or sale of any financial instrument
or as an official confirmation of any transaction. All market prices, data
and other information are not warranted as to completeness or accuracy and
are subject to change without notice. Any comments or statements made herein
do not necessarily reflect those of J.P. Morgan & Co. Incorporated, its
subsidiaries and affiliates.
