Re: [Repo-criteria-discuss] File checksums and signatures

repo-criteria-discuss

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: [Repo-criteria-discuss] File checksums and signatures

From:	Andrew Engelbrecht
Subject:	Re: [Repo-criteria-discuss] File checksums and signatures
Date:	Sun, 13 Mar 2016 14:19:21 -0400
User-agent:	Mozilla/5.0 (X11; Linux i686 on x86_64; rv:38.0) Gecko/20100101 Icedove/38.6.0

On 03/13/2016 12:15 PM, address@hidden wrote:
> Greetings!
> 
> Current ethical repository criteria list does not note anything related
> to downloaded data integrity and authenticity check. In my opinion those
> subject is closely related to security, and privacy is impossible
> without security.

git offers users the ability to sign and verify commits and tags as part
of its internal format. I assumed this feature is available for all
major sites that support git, but it might be worth some quick testing.

       git-verify-commit(1)
           Check the GPG signature of commits.

       git-verify-tag(1)
           Check the GPG signature of tags.

Andrew

[Prev in Thread]

Current Thread

[Next in Thread]

[Repo-criteria-discuss] File checksums and signatures, stargrave, 2016/03/13
- Re: [Repo-criteria-discuss] File checksums and signatures, Andrew Engelbrecht <=
  - Re: [Repo-criteria-discuss] File checksums and signatures, Sergey Matveev, 2016/03/13
- Re: [Repo-criteria-discuss] File checksums and signatures, Mike Gerwitz, 2016/03/13
  - Re: [Repo-criteria-discuss] File checksums and signatures, Sergey Matveev, 2016/03/14

Prev by Date: [Repo-criteria-discuss] File checksums and signatures
Next by Date: Re: [Repo-criteria-discuss] File checksums and signatures
Previous by thread: [Repo-criteria-discuss] File checksums and signatures
Next by thread: Re: [Repo-criteria-discuss] File checksums and signatures
Index(es):
- Date
- Thread