From mboxrd@z Thu Jan 1 00:00:00 1970 X-Msuck: nntp://news.gmane.io/gmane.emacs.gnus.general/75248 Path: news.gmane.org!not-for-mail From: asjo@koldfront.dk (Adam =?utf-8?Q?Sj=C3=B8gren?=) Newsgroups: gmane.emacs.gnus.general Subject: Re: Add note about Oort Gnus releases, and No Gnus. Date: Sat, 18 Dec 2010 16:44:01 +0100 Organization: koldfront - analysis & revolution, Copenhagen, Denmark Message-ID: <87zks3m6gu.fsf@topper.koldfront.dk> References: <87eia67lxj.fsf@topper.koldfront.dk> <871v667ger.fsf@topper.koldfront.dk> <87lj3slziq.fsf@lifelogs.com> <87oc8lzb3v.fsf_-_@topper.koldfront.dk> <87r5dh7650.fsf@lifelogs.com> <87ipys4hb8.fsf@lifelogs.com> <877hf7glmk.fsf@lifelogs.com> <874oabnm4x.fsf@topper.koldfront.dk> <87wrn7dro5.fsf@lifelogs.com> NNTP-Posting-Host: lo.gmane.org Mime-Version: 1.0 Content-Type: text/plain; charset=utf-8 Content-Transfer-Encoding: 8bit X-Trace: dough.gmane.org 1292687110 14361 80.91.229.12 (18 Dec 2010 15:45:10 GMT) X-Complaints-To: usenet@dough.gmane.org NNTP-Posting-Date: Sat, 18 Dec 2010 15:45:10 +0000 (UTC) To: ding@gnus.org Original-X-From: ding-owner+M23603@lists.math.uh.edu Sat Dec 18 16:45:02 2010 Return-path: Envelope-to: ding-account@gmane.org Original-Received: from util0.math.uh.edu ([129.7.128.18]) by lo.gmane.org with esmtp (Exim 4.69) (envelope-from ) id 1PTyxy-0004A4-Fe for ding-account@gmane.org; Sat, 18 Dec 2010 16:45:02 +0100 Original-Received: from localhost ([127.0.0.1] helo=lists.math.uh.edu) by util0.math.uh.edu with smtp (Exim 4.63) (envelope-from ) id 1PTyxK-0005YG-Bv; Sat, 18 Dec 2010 09:44:22 -0600 Original-Received: from mx1.math.uh.edu ([129.7.128.32]) by util0.math.uh.edu with esmtps (TLSv1:AES256-SHA:256) (Exim 4.63) (envelope-from ) id 1PTyxJ-0005Y4-1B for ding@lists.math.uh.edu; Sat, 18 Dec 2010 09:44:21 -0600 Original-Received: from quimby.gnus.org ([80.91.231.51]) by mx1.math.uh.edu with esmtp (Exim 4.72) (envelope-from ) id 1PTyxH-0002gU-So for ding@lists.math.uh.edu; Sat, 18 Dec 2010 09:44:20 -0600 Original-Received: from lo.gmane.org ([80.91.229.12]) by quimby.gnus.org with esmtp (Exim 4.72) (envelope-from ) id 1PTyxG-0001zk-Mj for ding@gnus.org; Sat, 18 Dec 2010 16:44:18 +0100 Original-Received: from list by lo.gmane.org with local (Exim 4.69) (envelope-from ) id 1PTyxD-0003pT-5V for ding@gnus.org; Sat, 18 Dec 2010 16:44:15 +0100 Original-Received: from rain.gmane.org ([80.91.229.7]) by main.gmane.org with esmtp (Gmexim 0.1 (Debian)) id 1AlnuQ-0007hv-00 for ; Sat, 18 Dec 2010 16:44:15 +0100 Original-Received: from asjo by rain.gmane.org with local (Gmexim 0.1 (Debian)) id 1AlnuQ-0007hv-00 for ; Sat, 18 Dec 2010 16:44:15 +0100 X-Injected-Via-Gmane: http://gmane.org/ Mail-Followup-To: ding@gnus.org Original-Lines: 37 Original-X-Complaints-To: usenet@dough.gmane.org X-Gmane-NNTP-Posting-Host: rain.gmane.org Mail-Copies-To: never X-Face: )qY&CseJ?.:=8F#^~GcSA?F=9eu'{KAFfL1C3/A&:nE?PW\i65"ba0NS)97,Q(^@xk}n4Ou rPuR#V8I(J_@~H($[ym:`K_+]*kjvW>xH5jbgLBVFGXY:(#4P>zVBklLbdL&XxL\M)%T}3S/IS9lMJ ^St'=VZBR Precedence: bulk Xref: news.gmane.org gmane.emacs.gnus.general:75248 Archived-At: On Sat, 18 Dec 2010 09:30:50 -0600, Ted wrote: > I trust chmod, chown, rsync, install/ginstall, and cfengine and Puppet > (and similar sysadmin tools). Only the first three come in to play here, right? > But Git was not written to manage file deployments or be secure so I > don't trust it to do it right. I'm probably being dense, but what exactly is it you expect git to do wrong insecurely? > The rsync step can be modified to exclude .htaccess, for instance, > because it's a security risk. If you `git pull' a compromised repo, > though, you're screwed. Surely you can do the same step(s) that you would have rsync do, post pull? Wouldn't you expect the machine to be compromised for the repository to be so? > Also the .git directory under the HTML tree would bother me and is a > potential security risk. Again I am probably dense, but how would the content of .git pose a security risk? Best regards, Adam -- "Accept the mystery!" Adam Sjøgren asjo@koldfront.dk