FreeBSD needs Git to ensure repo integrity [was: 2012 incident]
Chris Rees
utisoft at gmail.com
Sat Nov 17 21:48:15 UTC 2012
On 17 Nov 2012 21:00, "Michael Ross" <gmx at ross.cx> wrote:
>
> On Sat, 17 Nov 2012 21:11:43 +0100, Ivan Klymenko <fidaj at ukr.net> wrote:
>
>> В Sat, 17 Nov 2012 15:00:06 -0500
>> grarpamp <grarpamp at gmail.com> пишет:
>>
>>> http://www.freebsd.org/news/2012-compromise.html
>>>
http://it.slashdot.org/story/12/11/17/143219/freebsd-project-discloses-security-breach-via-stolen-ssh-key
>>>
>>> This is not about this incident, but about why major opensource
>>> projects need to be using a repository that has traceable, verifiable,
>>> built-in cryptographic authentication.
>>>
>
>> LOL And how will this help Linux?
>> http://lwn.net/Articles/457142/
>
>
> In the first comment on the article you link to, you find this:
>
>
http://www.linux.com/news/featured-blogs/171-jonathan-corbet/491001-the-cracking-of-kernelorg
>
> where the OPs view is susbstantiated.
Yes, but git doesn't work with our workflow. It's been discussed several
times, and changing to a tool that doesn't work for us (and is GPL btw) is
no good at all.
Chris
More information about the freebsd-hubs
mailing list