gnu-arch-users
[Top][All Lists]
Advanced
[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: [Gnu-arch-users] oh the heck with it -- tla-1.2pre0

From: Tom Lord
Subject: Re: [Gnu-arch-users] oh the heck with it -- tla-1.2pre0
Date: Tue, 30 Dec 2003 09:16:06 -0800 (PST) 

    > From: Momchil Velikov <address@hidden>

    > Tom>     * Signed Archives
    > Tom>     ** Creating a Signed Archive
    > Tom>     ** Signing Rules: ~/.arch-params/signing/$ARCHIVE
    > Tom>     ** Signature Checking Rules: 
~/.arch-params/signing/$ARCHIVE.check
    > Tom>     ** Default Rules

    >   Is it possible to create encrypted archives ? Say, having in
    > ~/.arch-params/signing/$ARCHIVE

    >         gpg --sign --encrypt

    > and in ~/.arch-params/signing/$ARCHIVE.check

    >         gpg --decrypt 


Not as things stand.  Those rules will encrypt and decrypt the
checksum data, but the source code itself will remain plain text.

It would be very easy to add encryption of source data -- not so easy
to add encryption of the _names_ of categories, branches, versions,
and revisions.  People would be able to see the names of what you're
working on and your rate of progress -- but would have to crack the
encryption to get the actual source.

Are you sure that's what you'd want?  Encryption of _archival_ formats
seems like an especially tricky thing -- lose your keys and your
backups are not very useful.

Wouldn't some sort of VPN be more appropriate?

-t
reply via email to
[Prev in Thread] Current Thread [Next in Thread]