On Mar 16, 2011, at 6:40 PM, "Ron Wilson" <[email protected]> wrote: > On Wed, Mar 16, 2011 at 5:08 PM, Jan Danielsson > <[email protected]> wrote: >> On that note.. Planning a little bit further into the future here. Is >> anyone interested in "full" support for PKI in fossil? For instance, >> signing commits using a client key belonging to a certificate > > Signing commits is a good idea. I would recomend invoking gpg (or > other crypto tool) to generate and validate signatures, rather than > even using a library.
Fossil already supports signing commits with gpg. It used to be turned on by default but is now off b/c too many people found it annoying/confusing. Fossil does not, however, do anything to verify signatures--it's more of an audit trail feature than access control. _______________________________________________ fossil-users mailing list [email protected] http://lists.fossil-scm.org:8080/cgi-bin/mailman/listinfo/fossil-users
