monotone-devel
[Top][All Lists]
Advanced
[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: [Monotone-devel] Monotone Security

From: hendrik
Subject: Re: [Monotone-devel] Monotone Security
Date: Fri, 17 Oct 2008 04:55:20 -0400
User-agent: Mutt/1.5.9i 
On Thu, Oct 16, 2008 at 10:05:59PM +0200, Daniel Carrera wrote:
> address@hidden wrote:
> >On Thu, Oct 16, 2008 at 05:28:13PM +0200, Daniel Carrera wrote:
> >>Slight modification:
> >>
> >>foreach (head) {
> >>    if (head is signed with bad key) {
> >>        1. find the first ancestor revision of that head that is
> >>        signed by a good key.
> >>        2. delete every descendant of that revision.
> >>    }
> >>}
> >>
> >
> >             GOOD1
> >                /  \
> >               /    \
> >              bad  GOOD2
> >
> >Thus GOOD2 would be deleted.
> 
> How so? Unless GOOD2 is signed with the bad key, in which case there is 
> no way to know that it is good other than having the legitimate owner of 
> the bad key look at it.

It says to delete *every* descendant of that revision, not just the 
descendants with the bad key.

-- hendrik
reply via email to
[Prev in Thread] Current Thread [Next in Thread]