Ethan Blanton wrote:
Monotone generally settles on security first; many users (myself
included) consider this a good thing.
I second that. Security is one of the most interesting features of
Monotone. It's what brought me to this list.
A single, well-known key store
is much easier to keep track of and secure than a variety of databases
being shipped all over the network for various reasons. Yes, those
keys are protected, but they're protected by a passphrase which is
almost certainly not very good, cryptographically speaking.
Indeed. I don't know of any product with PK cryptography that
distributes private keys all nilly willy.
It's a freaking land mine.
That's interesting ... I found the in-database keys to be a "freaking
land mine", and was quite pleased several years back when they were
ditched in favor of a filesystem key store.
Monotone used to have private keys in the DB?!
Daniel.
_______________________________________________
Monotone-devel mailing list
[email protected]
http://lists.nongnu.org/mailman/listinfo/monotone-devel
