Re: Smart fetch via HTTP?

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

 



On Fri, 18 May 2007, Linus Torvalds wrote:

On Thu, 17 May 2007, Matthieu Moy wrote:

Many (if not most?) of the people working in a big company, I'd say.
Year, it sucks, but people having used a paranoid firewall with a
not-less-paranoid and broken proxy understand what I mean.

Well, we could try to support the git protocol over port 80..

IOW, it's probably easier to try to get people to use

	git clone git://some.host:80/project

and just run git-daemon on port 80, than it is to try to set of magic cgi
scripts etc.

Doing that with virtual hosts etc should be pretty trivial. Much more so
than trying to make a git-cgi script.

And yes, I do realize that in theory you can have http-aware firewalls
that expect to see the normal http sequences in the first few packets in
order to pass things through, but I seriously doubt it's very common.

they are actually more common than you think, and getting even more common thanks to IE

when a person browsing a hostile website will allow that website to take over the machine the demand is created for 'malware filters' for http, to do this the firewalls need to decode the http, and in the process limit you to only doing legitimate http.

it's also the case that the companies that have firewalls paranoid enough to not let you get to the git port are highly likely to be paranoid enough to have a malware filtering http firewall.

David Lang

-
To unsubscribe from this list: send the line "unsubscribe git" in
the body of a message to majordomo@xxxxxxxxxxxxxxx
More majordomo info at  http://vger.kernel.org/majordomo-info.html

[Index of Archives]     [Linux Kernel Development]     [Gcc Help]     [IETF Annouce]     [DCCP]     [Netdev]     [Networking]     [Security]     [V4L]     [Bugtraq]     [Yosemite]     [MIPS Linux]     [ARM Linux]     [Linux Security]     [Linux RAID]     [Linux SCSI]     [Fedora Users]

  Powered by Linux