On Tue, Nov 03, 2015 at 03:09:52PM +, James Le Cuirot wrote:
> On Tue, 3 Nov 2015 08:56:29 -0600
> William Hubbs wrote:
>
> > As has been pointed out in the thread so far, gcc-5 only supports
> > go-1.4. dev-lang/go is at 1.5, so really the only thing that should be
> >
Hi gentoo-dev,
I recently had a bout with sudo and sssd, and found that the problem was that
sudo wasn't sssd aware and the reason we don't have a USE-flag for that is due
to some lingering bugs.
To partially solve this I propose that we mask the sssd USE-flag,
globally and only unmask it on
On 11/04/2015 09:56 AM, Andrew Savchenko wrote:
> On Sun, 1 Nov 2015 14:53:20 +0100 hasufell wrote:
You shouldn't use rsync anymore, it is inherently insecure. The git
tree is _properly_ gpg signed so you can verify it's correctness.
With the following portage
hasufell schrieb:
If you want to improve the situation, go talk to git upstream
and send patches.
Or do what Andrew suggested should happen.
Best regards,
Chí-Thanh Christopher Nguyễn
On Sun, 1 Nov 2015 14:53:20 +0100 hasufell wrote:
> >> You shouldn't use rsync anymore, it is inherently insecure. The git
> >> tree is _properly_ gpg signed so you can verify it's correctness.
> >>
> >> With the following portage configuration/hooks, any user can run the
> >> tree directly from
hasufell schrieb:
On 11/04/2015 09:56 AM, Andrew Savchenko wrote:
No, it is not. The whole git tree is insecure and no better than
rsync or CVS in terms of data security because SHA1 is vulnerable.
Another one who is confusing _any_ collision with _preimage attack_ ;)
While Andrew's view is
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA512
On 11/04/2015 05:18 PM, hasufell wrote:
> On 11/04/2015 09:56 AM, Andrew Savchenko wrote:
>> No, it is not. The whole git tree is insecure and no better than
>> rsync or CVS in terms of data security because SHA1 is
>> vulnerable.
>>
>
> Another
On 11/04/2015 05:33 PM, Chí-Thanh Christopher Nguyễn wrote:
> hasufell schrieb:
>> On 11/04/2015 09:56 AM, Andrew Savchenko wrote:
>>> No, it is not. The whole git tree is insecure and no better than
>>> rsync or CVS in terms of data security because SHA1 is vulnerable.
>>>
>> Another one who is
On 11/04/2015 05:44 PM, Chí-Thanh Christopher Nguyễn wrote:
> hasufell schrieb:
>
>> If you want to improve the situation, go talk to git upstream
>> and send patches.
>
> Or do what Andrew suggested should happen.
>
>
If you want to break the whole git workflow yes. Good suggestion.
On 11/04/2015 11:34 AM, lejonet wrote:
> Hi gentoo-dev,
>
> I recently had a bout with sudo and sssd, and found that the problem was that
> sudo wasn't sssd aware and the reason we don't have a USE-flag for that is due
> to some lingering bugs.
>
> To partially solve this I propose that we mask
10 matches
Mail list logo