Recent Features
| |||||||||||||
Security in the 20-teensSecurity in the 20-teensPosted Feb 7, 2010 1:26 UTC (Sun) by vonbrand (subscriber, #4458)In reply to: Security in the 20-teens by njs Parent article: Security in the 20-teens
You are mistaken. E.g., git doesn't hash the whole repo each time I commit something, what is hashed as a commit is just the contents of a file containing pointers (as SHA-1 hashes) of its parents and any file contents referenced. You can also GPG-sign a tag for added security.
(Log in to post comments)
Security in the 20-teens Posted Feb 7, 2010 3:09 UTC (Sun) by njs (guest, #40338) [Link]
You misread :-). Certainly git doesn't hash the whole repo, it uses the chained hashing trick (the "pointers" you mentioned). This subthread is about what happens if you don't trust hashes -- you certainly can't use the chained hashing trick.
|
|||||||||||||