> -----Original Message-----
> From: Andreas Schwab
> Sent: Friday, December 27, 2013 9:12 AM
> Sergey Sharybin <sergey....@gmail.com> writes:
> > So guess we just need to recommend using https:// protocol instead of
> > git:// for our users?
> Given how easy it is to verify the integrity of a git repository out of
> band there isn't really much of added security by using TLS for
> transport.

I have to say, using encryption (TLS, etc) is not just for assurance of the 
communicating parties, but also to prevent a compromise of confidentiality.

Jason Pyeron
(please do not add me to the cc)

Attachment: smime.p7s
Description: S/MIME cryptographic signature

Reply via email to