http subversion URLs should be discontinued in favor of https URLs
Igor Mozolevsky
mozolevsky at gmail.com
Mon Dec 11 16:16:47 UTC 2017
On 11 December 2017 at 16:06, Karl Denninger <karl at denninger.net> wrote:
<snip>
SVN's shortcoming is that it does nothing for [integrity] on an inherent
> basis
> and this debate is thus about trying to use a tool that allegedly does
> three things when we really only need one of them.
>
<snip>
This is precisely why I suggested that something along the lines of a
Merkle Tree of signed hashes over the revisions would provide adequate
integrity, and I am guessing it'd be pretty straight forward to implement
with SVN hooks (maybe?). I just don't have the time to look into it in any
details.
--
Igor M.
More information about the freebsd-security
mailing list