[darcs-users] Data Integrity
Trent W. Buck
trentbuck at gmail.com
Sat Apr 11 03:19:10 UTC 2009
Daniel Carrera <daniel.carrera at theingots.org> writes:
>>> In fact, Darcs could sign all patches, so that tags are not
>>> "special".
>>
>> Some people do not have GPG keys. I do not think Darcs should force
>> newbies to create keys before they can submit patches, so I think
>> there needs to be a way to have unsigned patches, and to add a
>> signature later on.
>
> While I agree with not requiring people to have GPG, I'm not sure
> about not requiring people to have *some* sort of key. Whenever you do
> start a project you have to do a 'darcs init' anyways, and you have to
> supply a user name anyways. Why not ask for a password and generate
> the key at the same time you are initializing the directory?
Currently the prompted name is written to the repo, not the user's
global preferences. If the same was done for an autogenerated keypair,
a novice user could easily end up with hundreds of keys.
More information about the darcs-users
mailing list