> -----Original Message----- > From: Andreas Schwab > Sent: Friday, December 27, 2013 9:12 AM > > Sergey Sharybin <sergey.vfx@xxxxxxxxx> writes: > > > So guess we just need to recommend using https:// protocol instead of > > git:// for our users? > > Given how easy it is to verify the integrity of a git repository out of > band there isn't really much of added security by using TLS for > transport. I have to say, using encryption (TLS, etc) is not just for assurance of the communicating parties, but also to prevent a compromise of confidentiality. Jason Pyeron (please do not add me to the cc)
<<attachment: smime.p7s>>