On Apr 5, 2010, at 4:14 PM, Wilson, Ronald wrote: > > Currently the fossil client performs the --clearsign on commit. By > the > same token the remote repository could perform the --verify when a > checkin is pushed to it? This would give fossil the opportunity to > reject checkins from untrusted authors at the canonical repository.
The philosophy of DVCS (or least of Fossil) is that you don't "reject" unsigned or mis-signed check-ins. You merely tag those check-ins as such and make users aware of their questionable status. Fossil strives to provide an audit trail, not policy enforcement. D. Richard Hipp d...@hwaci.com _______________________________________________ fossil-users mailing list fossil-users@lists.fossil-scm.org http://lists.fossil-scm.org:8080/cgi-bin/mailman/listinfo/fossil-users
