Means, you need a Git account and chat over two GIT Accounts via a GIT Server with each other, and it appears as a git commit with ciphertext :-)
This may be an interesting proof of concept, but I wouldn't use it for anything serious. The entire point of Git is to keep records forever and track who said what, when, and where.
If you can't reliably delete the messages, then you're in reality creating an archive of traffic that can be exploited at some future date. Further, the amount of metadata being generated is nontrivial.
Secure communications require much more than ciphertext. The metadata generated by Git alone, in this context, gives me serious concern.
OpenPGP_signature.asc
Description: OpenPGP digital signature
_______________________________________________ Gnupg-users mailing list [email protected] https://lists.gnupg.org/mailman/listinfo/gnupg-users
