On 01/12/2023 21:24, Eric Wong wrote: > Jonny Grant <jg@xxxxxxxx> wrote: >> Hello >> May I ask if anyone has suggested adding a default warning that git:// is not a secure connection? >> >> ie "warning: git:// is not a secure connection. https and ssh are secure." > > To be accurate, that would need an exclusion list of hosts behind > already-encrypted and trusted networks. So stuff like .onion hostnames > for Tor, and a user-configurable list of hosts in a private LAN/VPN. That sounds good Eric. Or even just an info message? "info: git:// itself is an unencrypted connection. https and ssh are secure." Kind regards Jonny
