[Date Prev][Date Next] [Thread Prev][Thread Next] [Date Index] [Thread Index]

Re: GitHub “pull request” is useful and can be easily integrated'’

* Paul Wise:

> On Sun, Jul 19, 2015 at 5:49 PM, Florian Weimer wrote:
>> I don't quite understand this criticism.  Surely direct write access
>> to the repository always needs some sort of authentication step?
> Not sure about for http/https/ssh but the git protocol allows for
> anonymous push access and git-daemon supports that if you turn it on.
> On top of that you can layer some restrictions using hooks.
> https://ikiwiki.info/tips/untrusted_git_push/

Sure, and it's also possible to have shared accounts with well-known
passwords, see anonymous CVS.  But for write access, this is such a
fringe use case that I don't think this is what concerns people.

Reply to: