[Top] [All Lists]
[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: [Xen-devel] [PATCH 2/2] MAINTAINERS: use https for git trees

On Tue, Jul 10, 2018 at 09:47:01AM +0100, Andrew Cooper wrote:
> On 10/07/2018 09:39, Wei Liu wrote:
> > On Tue, Jul 10, 2018 at 02:36:49AM -0600, Jan Beulich wrote:
> >>>>> On 10.07.18 at 10:15, <wei.liu2@xxxxxxxxxx> wrote:
> >>> Signed-off-by: Wei Liu <wei.liu2@xxxxxxxxxx>
> >> What's wrong with git:// ? I think the commit message should be non-
> >> empty here.
> > git: is not encrypted, while https: is. At this time of age, it is
> > better to use encryption as much as possible.
> 
> And what good does encryption give you here?  The entire history is a
> cryptographic block chain...

Yes, you can always verify a signed tag or whatever.

But why not provide one more layer of security while we can? Isn't that
what defence in depth is about?

Wei.

> 
> ~Andrew

_______________________________________________
Xen-devel mailing list
Xen-devel@xxxxxxxxxxxxxxxxxxxx
https://lists.xenproject.org/mailman/listinfo/xen-devel

 

©2013 Xen Project, A Linux Foundation Collaborative Project. All Rights Reserved.
Linux Foundation is a registered trademark of The Linux Foundation.
Xen Project is a trademark of The Linux Foundation.

Rackspace

Lists.xenproject.org is hosted with RackSpace, monitoring our
servers 24x7x365 and backed by RackSpace's Fanatical Support®.