On Fri, 2016-10-28 at 22:31 -0700, Junio C Hamano wrote: > Not sending to the list, where mails from Gmail/phone is known to get > rejected. [I guess I can go ahead and quote this to the list.] > No. I'm saying that the scenario you gave is bad and people should be > taught not to connect to untrustworthy sites. To clarify, are you saying: (1) don't connect to an untrusted server ever (e.g., we don't promise that the server can't execute arbitrary code on the client), or (2) don't connect to an untrusted server if the client repository has data that needs to be kept secret from the server? The fetch/push attack relates only to #2. If #1, what are the other risks you are thinking of? Matt