> -----Original Message----- > From: Andreas Schwab > Sent: Friday, December 27, 2013 9:12 AM > > Sergey Sharybin <sergey....@gmail.com> writes: > > > So guess we just need to recommend using https:// protocol instead of > > git:// for our users? > > Given how easy it is to verify the integrity of a git repository out of > band there isn't really much of added security by using TLS for > transport.
I have to say, using encryption (TLS, etc) is not just for assurance of the communicating parties, but also to prevent a compromise of confidentiality. Jason Pyeron (please do not add me to the cc)
Description: S/MIME cryptographic signature