Archives
Archives
| From: | Sebastian Pipping <sping@g.o> | ||
|---|---|---|---|
| To: | gentoo-dev@l.g.o | ||
| Subject: | Re: [gentoo-dev] Current Gentoo Git setup / man-in-the-middle attacks | ||
| Date: | Sun, 29 Mar 2015 18:04:57 | ||
| Message-Id: | 55183EA4.1010004@gentoo.org | ||
| In Reply to: | Re: [gentoo-dev] Current Gentoo Git setup / man-in-the-middle attacks by Diamond |
||
| 1 | On 29.03.2015 19:56, Diamond wrote: |
| 2 | > Doesn't git:// uses SSH wich is secure? I think that was on github. |
| 3 | |
| 4 | git:// is "the git protocol" [1] "with absolutely no authentication" and |
| 5 | no encryption. |
| 6 | |
| 7 | GitHub does not support git:// but only secure protocols (HTTPS, SSH), |
| 8 | see [2]. |
| 9 | |
| 10 | Best, |
| 11 | |
| 12 | |
| 13 | |
| 14 | Sebastian |
| 15 | |
| 16 | |
| 17 | [1] |
| 18 | http://git-scm.com/book/en/v2/Git-on-the-Server-The-Protocols#The-Git-Protocol |
| 19 | [2] https://help.github.com/articles/which-remote-url-should-i-use/ |
| Subject | Author |
|---|---|
| Re: [gentoo-dev] Current Gentoo Git setup / man-in-the-middle attacks | "Vadim A. Misbakh-Soloviov" <mva@×××.name> |