lists.openwall.net   lists  /  announce  owl-users  owl-dev  john-users  john-dev  passwdqc-users  yescrypt  popa3d-users  /  oss-security  kernel-hardening  musl  sabotage  tlsify  passwords  /  crypt-dev  xvendor  /  Bugtraq  Full-Disclosure  linux-kernel  linux-netdev  linux-ext4  linux-hardening  linux-cve-announce  PHC 
Open Source and information security mailing list archives
 
Hash Suite: Windows password security audit tool. GUI, reports in PDF.
[<prev] [next>] [<thread-prev] [thread-next>] [day] [month] [year] [list]
Message-ID: <CAHk-=wgHTcLXY4P-EJiXd4MbwXjp9QdEfQ+udVUGRuUzT-8ZFA@mail.gmail.com>
Date:   Sat, 24 Nov 2018 10:04:30 -0800
From:   Linus Torvalds <torvalds@...ux-foundation.org>
To:     Matthew Wilcox <willy@...radead.org>
Cc:     Linux List Kernel Mailing <linux-kernel@...r.kernel.org>,
        dan.j.williams@...el.com
Subject: Re: [GIT PULL] XArray updates

On Sat, Nov 24, 2018 at 9:32 AM Matthew Wilcox <willy@...radead.org> wrote:
>
>   git://git.infradead.org/users/willy/linux-dax.git xarray

Can you *please* make that a signed tag.

I don't trust infradead.org implicitly, so I really want signed tag
pull requests.  I may not always notice, but when I do, I abort the
pull.

The only site that doesn't need signed tags is kernel.org, which I can
ssh into and I know and trust the security model. And even there I
really prefer signed tags.

                   Linus

Powered by blists - more mailing lists

Powered by Openwall GNU/*/Linux Powered by OpenVZ