[prev in list] [next in list] [prev in thread] [next in thread] 

List:       kde-scm-interest
Subject:    Re: [Kde-scm-interest] accountability
From:       Jeff Mitchell <mitchell () kde ! org>
Date:       2009-11-13 16:06:49
Message-ID: 4AFD8419.8040506 () kde ! org
[Download RAW message or body]

[Attachment #2 (multipart/signed)]


Ian Monroe wrote:
> Which is why I like my simple flat-file log idea (a log of commit
> hash, user id, maybe time). It doesn't open up any privacy issues
> (since the info is already public) and would solve the problem by
> using the commit hash, which is a nice security feature of git.

You still have an issue in that the user id is internal to Gitorious and
is meaningless without also providing further information, like email
address, name, public ssh key, or some such thing.

All of those could be seen as potential privacy issues; for instance,
you might think the email address would be obvious, but what if a person
is committing under a different email address than what they've given to
Gitorious?

--Jeff


["signature.asc" (application/pgp-signature)]

_______________________________________________
Kde-scm-interest mailing list
Kde-scm-interest@kde.org
https://mail.kde.org/mailman/listinfo/kde-scm-interest


[prev in list] [next in list] [prev in thread] [next in thread]