path: root/doc/security
diff options
author 21:13:19 +0000
committeradmin2014-08-29 21:13:19 +0000
commit99465c7b8ba4d6e91f98a3ba346f7659786a080d (patch)
tree6cdf5ec0dc10056f4221059b5b4e24c80d03fdc2 /doc/security
parent4f92a77e82f7c0a45c344b288c31f54ecb7af422 (diff)
Added a comment: Is it ok to publish to a public repository?
Diffstat (limited to 'doc/security')
1 files changed, 10 insertions, 0 deletions
diff --git a/doc/security/comment_1_6b4d8f45fc60f12b2b8c41046390cf43._comment b/doc/security/comment_1_6b4d8f45fc60f12b2b8c41046390cf43._comment
new file mode 100644
index 00000000..4ed9ecdb
--- /dev/null
+++ b/doc/security/comment_1_6b4d8f45fc60f12b2b8c41046390cf43._comment
@@ -0,0 +1,10 @@
+[[!comment format=mdwn
+ username=""
+ nickname="Arnaud"
+ subject="Is it ok to publish to a public repository?"
+ date="2014-08-29T21:13:19Z"
+ content="""
+It is not clear to me whether or not it is safe to publish my own propellor repository to a publicly hosted service. It seems to me that when I do ./propellor --add-key MYKEYID, the private key data is stored in the repository as a commit, so pushing it exposes this data to the public. Am I wrong?