On Mon, Dec 7, 2009 at 2:33 PM, Alan Burlison <alan.burli...@sun.com> wrote:
> Cyril Plisko wrote:
>
>> How about signing [1] the commits and verifying the signature[s]
>> during the push time ?
>>
>> [1] http://mercurial.selenic.com/wiki/GpgExtension
>
> That's an interesting reference, thanks - I didn't know that was possible.
> I think the main issue would be that of key management.
We (well, you) already keep ssh public keys.
--
Regards,
Cyril
_______________________________________________
tools-discuss mailing list
tools-discuss@opensolaris.org
