[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: [Xen-devel] [PATCH 2/2] MAINTAINERS: use https for git trees

On Tue, Jul 10, 2018 at 09:47:01AM +0100, Andrew Cooper wrote:
> On 10/07/2018 09:39, Wei Liu wrote:
> > On Tue, Jul 10, 2018 at 02:36:49AM -0600, Jan Beulich wrote:
> >>>>> On 10.07.18 at 10:15, <wei.liu2@xxxxxxxxxx> wrote:
> >>> Signed-off-by: Wei Liu <wei.liu2@xxxxxxxxxx>
> >> What's wrong with git:// ? I think the commit message should be non-
> >> empty here.
> > git: is not encrypted, while https: is. At this time of age, it is
> > better to use encryption as much as possible.
> And what good does encryption give you here?  The entire history is a
> cryptographic block chain...

Yes, you can always verify a signed tag or whatever.

But why not provide one more layer of security while we can? Isn't that
what defence in depth is about?


> ~Andrew

Xen-devel mailing list



Lists.xenproject.org is hosted with RackSpace, monitoring our
servers 24x7x365 and backed by RackSpace's Fanatical Support®.