| |
version 1.7.0, the criteria for verification of Signed References was changed
|
| |
to be more strict. In particular, to require the reference `refs/rad/root`
|
| |
pointing at the root commit in the history of the repository identity.
|
| - |
This was done under the assumption that not many repositories on the network
|
| - |
would not have this reference, thus not many users would be negatively affected,
|
| - |
in a trade for improved security.
|
| + |
This was done under the assumption that the majority of repositories on the
|
| + |
network would have this reference, thus not many users would be negatively
|
| + |
affected, in a trade for improved security.
|
| |
It turned out that this assumption was wrong, and that a larger-than-expected
|
| |
portion of the network is affected by verification errors. The change is
|
| |
reverted, relaxing the verification criteria again.
|