18:52 hmm 18:52 i implemented SSL on my apache2 server, and now it seems my mod_dav_svn is b0rked 18:53 https://devbox.shellshark.net/svn/x86 18:53 does that work for anyone? 18:54 works here 18:55 but why on earth https if you're not using passwords? 18:55 why not on earth? 18:55 complicates matters and it's slower 18:56 should work anyway, of course 18:56 https is pointless if you don't have mutual authentication (ie. certificates in both ends) 18:56 i'm using passwords for commits ;) 18:57 holsta: it still encrypts data going across the connection, all i care about 18:57 i dont care in validating that the person is who they say they are 18:57 x86, the attacker can still play mitm, which is all he cares about. 18:57 ooooo scary 18:57 ;) 18:58 x86, what's the point of encryption if anyone can pretend to be at the other end? 18:58 if they are that interested in my OSS SVN repo, then more power to them ;) 18:58 heh 18:58 So you're just wasting CPU and entropy for no reason? As long as you're aware of that.. 18:59 right 18:59 its not just for my SVN repo silly 18:59 its for my entire website 18:59 x86, you should consider folding.stanford.edu for your wasting CPU needs. 18:59 * x86 puts holsta on /ignore ;) 19:00 sussman: you're from chicago? 19:00 im in illinois too heh 19:00 See? People don't appreciate being told the truth about their perception of security. 19:00 holsta: i'm just saying... i'm not trying to protect fort knox here ;) 19:01 not really trying to "protect" anything at all... its a public website 19:01 i could give two shits if someone can access it... it's public, i expect them to be able to ;) 19:01 SSL is l33t though ;) 19:02 x86, I still say, run folding@home if you want to keep your CPU busy.