On Wed, May 11, 2016 at 10:34 AM, Kent Fredric wrote:
>
> There's an added security measure that exists /outside/ the gentoo
> source control.
>
It also fails differently.
If I find out that somebody compromised ssh in some way, doubt is cast
on any commit during the period in which the ssh serv
On 11 May 2016 at 22:21, Alexis Ballier wrote:
>
> yes, and it was meant to be :)
>
>
> my point was more that if we want signed commits, then better have
> author sign it, and thus use merge
Eh, I see it more a "signed commits don't really add any value to this
discussion".
Both signing on mast
On Wed, 11 May 2016 02:18:03 +1200
Kent Fredric wrote:
> On 11 May 2016 at 00:04, Alexis Ballier wrote:
> > well, then I can commit crap with --author m...@gentoo.org and claim
> > he made me rebase it :)
>
>
> Well, if you're going down that line ...
>
> You don't rebase it, you just merge
