[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
Re: ‘core-updates’ merge is a squashed commit
From: |
Mike Gerwitz |
Subject: |
Re: ‘core-updates’ merge is a squashed commit |
Date: |
Sun, 07 Aug 2016 02:16:11 -0400 |
User-agent: |
Gnus/5.13 (Gnus v5.13) Emacs/25.0.92 (gnu/linux) |
On Thu, Aug 04, 2016 at 17:06:15 +0200, Andy Wingo wrote:
> What's the rationale for requiring non-HEAD commits to be signed when
> pushing? For me a signed HEAD implicitly signs all parent comments, in
> my mental trust model anyway :)
That could be a potentially daunting/impossible task for the person
signing a commit.
Aside from asserting one's identity, GPG-signed commits also (can) help
in the event that the system of one of the Guix hackers with commit
access is compromised. Attacking Savannah is one way to compromise the
repo, but compromising one of the many Guix hackers' systems is another.
If a commit is signed in the hacker's local repo, it cannot be
manipulated by an attacker, nor can an attacker sign a new malicious
commit. Unless, of course, the GPG key resides on the same box, the
attacker can get a hold of it, and can use a keylogger/etc to get the
passphrase. Smart cards help here.
I also recommend against auto-signing commmits on rebase unless you
first verify that each commit within that range has a valid signature
beforehand.
Not fool-proof, but nothing is. :)
--
Mike Gerwitz
Free Software Hacker+Activist | GNU Maintainer & Volunteer
https://mikegerwitz.com | GPG Key ID: 0x8EE30EAB
signature.asc
Description: PGP signature
- Re: ‘core-updates’ merge is a squashed commit, (continued)
- Re: ‘core-updates’ merge is a squashed commit, Leo Famulari, 2016/08/04
- Re: ‘core-updates’ merge is a squashed commit, Andy Wingo, 2016/08/05
- Re: ‘core-updates’ merge is a squashed commit, Leo Famulari, 2016/08/05
- Re: ‘core-updates’ merge is a squashed commit, Andy Wingo, 2016/08/05
- Re: ‘core-updates’ merge is a squashed commit, Leo Famulari, 2016/08/05
- Re: ‘core-updates’ merge is a squashed commit, Mark H Weaver, 2016/08/05
- Re: ‘core-updates’ merge is a squashed commit, Leo Famulari, 2016/08/05
- Re: ‘core-updates’ merge is a squashed commit, Andy Wingo, 2016/08/08
- Re: ‘core-updates’ merge is a squashed commit, Andreas Enge, 2016/08/06
- Re: ‘core-updates’ merge is a squashed commit, Andy Wingo, 2016/08/08
- Re: ‘core-updates’ merge is a squashed commit,
Mike Gerwitz <=
- Re: ‘core-updates’ merge is a squashed commit, Leo Famulari, 2016/08/04
- Re: core-updates merged!, Leo Famulari, 2016/08/06
- Re: core-updates merged!, Leo Famulari, 2016/08/10
- Re: core-updates merged!, Manolis Ragkousis, 2016/08/13
- Core-updates is ready for your patches!, Leo Famulari, 2016/08/13
- Re: core-updates merged!, Leo Famulari, 2016/08/08