Package: git Version: 1:2.11.0-2 I'm playing about with signed pushes, which I hope to use to allow the dgit git server to be used for general git hosting (pushable by DDs and DMs). That's #848678.
To use the signed push feature it is necessary to invent a nonce. Firstly: it is not at all clear from the documentation what the security properties of this nonce are. The docs say it should be secret but little else. But more seriously, there is no documented way to pass this nonce to git that does not either write it to a git configuration file somewhere, or pass it on a command line. The git configuration system is unsuited to keeping secrets. It has one config file per tree, which generally wants to be world-readable. Command lines can be seen in ps etc. I think I am going to have to work around this by passing it in GIT_CONFIG_PARAMETERS. However, GIT_CONFIG_PARAMETERS is not documented anywhere. I will guess from the current behaviour. Ian. -- Ian Jackson <[email protected]> These opinions are my own. If I emailed you from an address @fyvzl.net or @evade.org.uk, that is a private address which bypasses my fierce spamfilter.
