[libav-bugs] [Bug 1085] New: Only insecure git URLs offered

bugzilla at libav.org bugzilla at libav.org
Fri Sep 29 16:09:19 CEST 2017


https://bugzilla.libav.org/show_bug.cgi?id=1085

            Bug ID: 1085
           Summary: Only insecure git URLs offered
           Product: Infrastructure
           Version: unspecified
          Hardware: Other
                OS: Linux
            Status: NEW
          Severity: normal
          Priority: ---
         Component: libav.org
          Assignee: bugzilla at libav.org
          Reporter: hanno at hboeck.de

The main libav download page here
https://libav.org/download/
offers several git:// URLs for repository cloning.

the git://-protocol is a plaintext protocol and insecure by design.

Also the git web view here
https://git.libav.org/?p=libav.git
offers a git:// and an http:// URL.

I'd recommend transition them to secure variants. https clone seems to work,
but with reduced features (e.g. I couldn't do a shallow copy clone on the https
variant).

-- 
You are receiving this mail because:
You are watching all bug changes.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.libav.org/pipermail/libav-bugs/attachments/20170929/cf20af90/attachment.html>


More information about the libav-bugs mailing list