Security
Mattias Eriksson
snaggen at acc.umu.se
Wed Nov 4 09:34:11 GMT 2009
ons 2009-11-04 klockan 09:35 +0100 skrev Joke de Buhr:
> On Wednesday 04 November 2009 03:06:53 Stephen J. Turnbull wrote:
> > Daniel Carrera writes:
> > > Hello,
> > >
> > > Does Bazaar have any cryptographic security guarantees in the style
> > > of Monotone, Git and Mercurial?
> >
> > Last I heard, only Monotone makes any pretense to security. Git and
> > Mercurial provide a certain amount of automatic integrity checking,
> > using a cryptographic quality hash. Whether that can be
> > straightforwardly extended to security is another question; it depends
> > a lot on workflows AFAIK.
> >
>
> Git cryptographic protection is based an sha1 hashes. Each commit is
> hashed much like you can hash files from command-line using sha1sum. The
> hash is used as a revion id in git.
The beauty of this hash in git is that the hash of the latest revistion
is based on previous revisions, meaning that if you know that hash you
can verify the integrity of the whole history not just that revision. I
do not know if bazaar has this kind of mechanism built in to the
revision hash.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: https://lists.ubuntu.com/archives/bazaar/attachments/20091104/29227cfd/attachment.htm
More information about the bazaar
mailing list