> It's because of how CramMD5 works. > > "The server needs access to the users' plain text passwords." > http://en.wikipedia.org/wiki/CRAM-MD5 > > Stefan
Perhaps I'm wrong, but I was under the impression that the 1.6.x version of 'svnserve' natively supports CRAM-MD5; meaning you *don't* need to set 'use-sasl = true' to get this functionality. So my original question stands as to what SASL is buying us when it still requires plain-text passwords to be stored on the server? -Sean
