Re: [PATCH 4/6] http: make redirects more obvious

On 01/12/16 09:04, Jeff King wrote: > We instruct curl to always follow HTTP redirects. This is > convenient, but it creates opportunities for malicious > servers to create confusing situations. For instance, > imagine Alice is a git user with access to a private > repository on Bob's server.

[PATCH 4/6] http: make redirects more obvious

We instruct curl to always follow HTTP redirects. This is convenient, but it creates opportunities for malicious servers to create confusing situations. For instance, imagine Alice is a git user with access to a private repository on Bob's server. Mallory runs her own server and wants to access