I've set up a mob repository again. The intention here is that anyone
can easily push fixes to it (please make your own git branch).
The address is:
git://git.cinelerra.org/mob/cinelerra.git
Note that you shall *NEVER EVER* trust the content of this repository,
anyone could upload potential
On Tue, 2008-10-14 at 15:38 +0200, Christian Thaeter wrote:
Note that you shall *NEVER EVER* trust the content of this repository,
anyone could upload potential malicious content there. Review every
pull
you do and consider gpg-signed tags for anything you want to be
trusted.
Stupid question
On Dienstag, 14. Oktober 2008, Peter B. Steiger wrote:
Stupid question here, couldn't any malicious person put a gpg-signed tag
on destructive content as well?
Sure. But it can only be that person's own signature (unless it was stolen),
and it's your business whether you blindly trust that