Archives
Archives
| From: | Sebastian Pipping <sping@g.o> | ||
|---|---|---|---|
| To: | gentoo-dev@l.g.o | ||
| Subject: | Re: [gentoo-dev] Current Gentoo Git setup / man-in-the-middle attacks | ||
| Date: | Sun, 29 Mar 2015 17:52:54 | ||
| Message-Id: | 55183BE6.90205@gentoo.org | ||
| In Reply to: | Re: [gentoo-dev] Current Gentoo Git setup / man-in-the-middle attacks by Andrew Savchenko |
||
| 1 | On 29.03.2015 19:39, Andrew Savchenko wrote: |
| 2 | > On Sun, 29 Mar 2015 18:41:33 +0200 Sebastian Pipping wrote: |
| 3 | >> So I would like to propose that |
| 4 | >> |
| 5 | >> * support for Git access through https:// is activated, |
| 6 | >> |
| 7 | >> * Git access through http:// and git:// is deactivated, and |
| 8 | > |
| 9 | > Some people have https blocked. http:// and git:// must be |
| 10 | > available read-only. |
| 11 | |
| 12 | They would not do online banking over http, right? Why would they run |
| 13 | code with root privileges from http? |
| 14 | |
| 15 | Best, |
| 16 | |
| 17 | |
| 18 | |
| 19 | Sebastian |
| Subject | Author |
|---|---|
| Re: [gentoo-dev] Current Gentoo Git setup / man-in-the-middle attacks | Andrew Savchenko <bircoph@g.o> |
| Re: [gentoo-dev] Current Gentoo Git setup / man-in-the-middle attacks | "Vadim A. Misbakh-Soloviov" <mva@×××.name> |
| Re: [gentoo-dev] Current Gentoo Git setup / man-in-the-middle attacks | Rich Freeman <rich0@g.o> |