Stefan Seyfried <stefan.seyfried(a)googlemail.com> writes:
Am 27.12.2011 03:32, schrieb Claudio Freire:
It uses chained hashes.
Keyed or not, don't remember.
If they're not keyed, anyone can falsify records, they only have to
rewrite all hashes.
Exactly like they can easily insert a commit into a git repo and nobody
will ever notice?
Git lives and dies on being decentral and pushed regularly to independent
locations. Surely if 99% of the git repos you find contain an injected
commit, what makes *you* believe it isn't genuine?
To unsubscribe, e-mail: opensuse-factory+unsubscribe(a)opensuse.org
To contact the owner, e-mail: opensuse-factory+owner(a)opensuse.org