[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
Re: .gitmodules security
From: |
Vincent Lefevre |
Subject: |
Re: .gitmodules security |
Date: |
Sun, 6 Feb 2022 22:29:33 +0100 |
User-agent: |
Mutt/2.1.5+134 (92686e5d) vl-138565 (2022-02-02) |
On 2022-02-06 14:59:00 -0600, Alex Ameen wrote:
> Hey, I can't claim to be an expert about this category of vulnerability; but
> I appreciate you raising this concern.
>
> So is your recommendation to use https://git.savannah.gnu.org/git/gnulib.git
> instead of git://git.sv.gnu.org/gnulib.git?
Yes, I've tried (see attached patch), and I couldn't see any issue.
BTW, in addition to security, https is now the recommended protocol.
Perhaps one day, "git:" will be abandoned at gnu.org, so that the
change would be needed anyway.
--
Vincent Lefèvre <vincent@vinc17.net> - Web: <https://www.vinc17.net/>
100% accessible validated (X)HTML - Blog: <https://www.vinc17.net/blog/>
Work: CR INRIA - computer arithmetic / AriC project (LIP, ENS-Lyon)
gitmodules.patch
Description: Text Data
- .gitmodules security, Vincent Lefevre, 2022/02/06
- Re: .gitmodules security, Vincent Lefevre, 2022/02/06
- Re: .gitmodules security, Alex Ameen, 2022/02/06
- Re: .gitmodules security,
Vincent Lefevre <=
- Re: .gitmodules security, Mike Frysinger, 2022/02/06
- Re: .gitmodules security, Vincent Lefevre, 2022/02/06
- Re: .gitmodules security, Mike Frysinger, 2022/02/06
- Re: .gitmodules security, Vincent Lefevre, 2022/02/07
- Re: .gitmodules security, Mike Frysinger, 2022/02/07
- Re: .gitmodules security, Vincent Lefevre, 2022/02/07
- Re: .gitmodules security, Mike Frysinger, 2022/02/11
- Re: .gitmodules security, Vincent Lefevre, 2022/02/11
- Re: .gitmodules security, Alex Ameen, 2022/02/13