From what i've read, the problem is that an attacker can add commits with forced... | Hacker News

Hacker Newsnew | past | comments | ask | show | jobs | submit

		asharp on May 22, 2012 \| parent \| context \| favorite \| on: A Git Horror Story: Repository Integrity With Sign... From what i've read, the problem is that an attacker can add commits with forced Author information into a central repository to frame somebody else. Wouldn't the signing of all commits as they are committed solve this problem? (ie. rather then trusting Author information from the commit, trust the signed-by information to give author information?)

mikegerwitz on May 22, 2012 [–]

Note that Signed-off-by (as added by -s) is different than -S (GPG-sign). The -s option simply appends the "Signed-off-by" line to the commit message, so this can also be forged.

The GPG signature cannot be forged (access to the private key is needed).

Guidelines | FAQ | Lists | API | Security | Legal | Apply to YC | Contact