Preventing Author Spoofing

Arne Babenhauserheide arne_bab at web.de
Thu Nov 27 18:55:01 UTC 2014


Am Mittwoch, 26. November 2014, 11:57:15 schrieb Aaron Jensen:

> What is the recommended solution for preventing author spoofing? Our
> security team is nervous that anyone could make a commit, but use
> someone else's name/e-mail address.

You can also use the gpg extension and only allow pushing of signed
heads: http://mercurial.selenic.com/wiki/GpgExtension

Best wishes,
Arne
-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 299 bytes
Desc: This is a digitally signed message part.
URL: <http://lists.mercurial-scm.org/pipermail/mercurial/attachments/20141127/e560dbe5/attachment.asc>


More information about the Mercurial mailing list