Archives
Archives
| From: | Matthias Maier <tamiko@g.o> | ||
|---|---|---|---|
| To: | gentoo-dev@l.g.o | ||
| Subject: | [gentoo-dev] Re: rsync mirror security | ||
| Date: | Mon, 10 Aug 2015 21:05:25 | ||
| Message-Id: | 87fv3q7t34.fsf@jackdaw.kyomu.43-1.org | ||
| In Reply to: | Re: rsync mirror security (WAS: Re: [gentoo-dev] .gitignore) by "Aaron W. Swenson" |
||
| 1 | > Users can fetch/pull from Github. |
| 2 | |
| 3 | We could also provide automatic signed tags every 30min/1h/2h/whatever |
| 4 | (signed with a suitable infrastructure key). With that, the integrity of |
| 5 | a tagged git checkout can be easily verified on client side. |
| 6 | |
| 7 | Best, |
| 8 | Matthias |
| File name | MIME type |
|---|---|
| signature.asc | application/pgp-signature |
| Subject | Author |
|---|---|
| Re: [gentoo-dev] Re: rsync mirror security | Mike Frysinger <vapier@g.o> |
| Re: [gentoo-dev] Re: rsync mirror security | Kent Fredric <kentfredric@×××××.com> |