I'm trying to follow along here, and have a few abstract questions.
If an attacker takes control over a repository, then that repository is
compromised, and would need to be restored from a non-compromised back up. By
compromised we mean someone deleted it, defaced it, or worse tries to hide
On Fri, Mar 9, 2012 at 13:02, Thomas Stover c...@thomasstover.com wrote:
-Algorithmically verify that changes are signed by trusted users on push/pull
operations.
(this is also a question)
Theoretically, it is sufficient to sign a leaf manifest so that entire
part of the DAG that grows out
On Wed, Mar 7, 2012 at 22:03, Richard Hipp d...@sqlite.org wrote:
On Wed, Mar 7, 2012 at 7:10 PM, Leo Razoumov slonik...@gmail.com wrote:
On Wed, Mar 7, 2012 at 18:03, Brian Smith br...@linuxfood.net wrote:
On Wed, Mar 7, 2012 at 2:40 PM, Leo Razoumov slonik...@gmail.com
wrote:
Looking
On Wed, Mar 7, 2012 at 19:11, Brian Smith br...@linuxfood.net wrote:
On Wed, Mar 7, 2012 at 4:10 PM, Leo Razoumov slonik...@gmail.com wrote:
On Wed, Mar 7, 2012 at 18:03, Brian Smith br...@linuxfood.net wrote:
On Wed, Mar 7, 2012 at 2:40 PM, Leo Razoumov slonik...@gmail.com
wrote:
On Mar 7, 2012, at 19:10, Leo Razoumov slonik...@gmail.com wrote:
On Wed, Mar 7, 2012 at 18:03, Brian Smith br...@linuxfood.net wrote:
On Wed, Mar 7, 2012 at 2:40 PM, Leo Razoumov slonik...@gmail.com wrote:
Looking through the fossil source code I found places where manifests
are
On Wed, Mar 7, 2012 at 19:37, Themba Fletcher themba.fletc...@gmail.com wrote:
If I understand correctly, what happened at github was that someone exploited
a misconfiguration in the rails framework to insert his own public key as
trusted with respect to several repositories.
The fossil
On Wed, Mar 7, 2012 at 7:10 PM, Leo Razoumov slonik...@gmail.com wrote:
On Wed, Mar 7, 2012 at 18:03, Brian Smith br...@linuxfood.net wrote:
On Wed, Mar 7, 2012 at 2:40 PM, Leo Razoumov slonik...@gmail.com
wrote:
Looking through the fossil source code I found places where manifests
are
7 matches
Mail list logo
