0
57

[–] IAmAssange 0 points 57 points (+57|-0) ago 

Not possible. The git commit ID is a hash of the committed code, including all previous commits. Any change to any commit will change all future commits, and anybody who has a local clone of the repo would immediately notice that the commits don't match.

This is actually one of the main reasons git became so popular, it's cryptographically proven to be immutable. It's basically the same concept behind blockchain, just with code diffs instead of money.

0
5

[–] bikergang_accountant 0 points 5 points (+5|-0) ago 

But what about people wgetting the zip?

0
8

[–] weezkitty 0 points 8 points (+8|-0) ago 

It would still be noticed pretty quickly I would think. Besides secretly changing code and having it functional would be a LOT more effort then secretly changing comments

0
4

[–] caprep 0 points 4 points (+4|-0) ago 

Doesn't mean the repo I clone is the same one you clone. What if they provide different repos to specific people that aren't maintainers and aren't likely to check the hashes. Could put the same files in an a different repo.

0
1

[–] Amadameus 0 points 1 points (+1|-0) ago 

This is a legitimate way to get malicious code onto someone's computer.

Solution: check your damn hashes!

0
3

[–] embers [S] 0 points 3 points (+3|-0) ago 

Very well, I shall have to trust you on that one.

0
2

[–] superpewpew 0 points 2 points (+2|-0) ago 

Don't have to trust him. It's all independently verifiable. However, one of the good things is that github is just a single site. Anyone can host a git repo somewhere. The beauty of open source.

0
1

[–] GoodGodKirk 0 points 1 points (+1|-0) ago 

the work around being...could they force push a fork to update the code with their edits, bypassing author approval, possibly using authors nick to push the update or changing the update information directly within the db.

If they are editing directly within a db, I see a way to also edit or remove the logs.

authentication and network security are for preventing & logging intrusions from outside attempts. Once inside, or if already there, the security is only in logging mode, but cant determine between work and pilfering, so its the wild west when it comes to info gathering on the inside. Its isually too late by the time its noticed...If noticed at all.

0
14

[–] IAmAssange 0 points 14 points (+14|-0) ago 

No, you didn't understand. It's not about hacking in to the servers. Of course GitHub admin can access the data.

The point is that when they change the commit history, every commit after that changes fundamentally. There is no "deleting the logs", the repo IS the logs. Then the next time the author wanted push a new commit it would fail because the history had changed. This is what makes it similar to the blockchain, it has a distributed design so everybody who has a copy has a copy of the full history, if any one node changed the history all the rest would immediately notice because the history doesn't match when you push from one repo to another.

Do a bit more research into git's design, you'll see how it's designed specifically to prevent tampering.

0
24

[–] SuperConductiveRabbi 0 points 24 points (+24|-0) ago 

They'll already delete your entire repository unless you capitulate to their SJW demands: https://www.techdirt.com/articles/20150802/20330431831/github-nukes-repository-over-use-word-retard.shtml

0
6

[–] 6952689? 0 points 6 points (+6|-0) ago 

Jesus that's outrageous

0
0

[–] littul_kitton 0 points 0 points (+0|-0) ago 

Thanks. This comment is a great public service. I had no idea the moonbats had carried them off into la-la land. They used to be a great company.

5
14

[–] Master_Foo 5 points 14 points (+19|-5) ago 

If you are going to reach for a retarded conspiracy theory. At least grasp for one with plausible deniablity. It's a trivial matter to verify the provenance of a git project.

You are the reason for rule #3 on this subvoat. This is a place programming discussion. Do you even belong here? A person who uses Git should know these things. Are you lost or something? Maybe you made a wrong turn back in /v/fatpeoplehate or something? /v/conspiratards is probably where you are trying to post this stupid bullshit.

1
5

[–] roznak 1 points 5 points (+6|-1) ago 

0
2

[–] Master_Foo 0 points 2 points (+2|-0) ago 

That's old news and nothing compared to what OP is implying. They can remove a project. They can't ninja files into the project without record of that happening.

Also, the whole Github drama is specifically the whole reason rules #2 and #3 were added to this subverse. It doesn't really have anything to do with programming.

2
0

[–] buddyplease 2 points 0 points (+2|-2) ago 

Forgot your meds?

6
-1

[–] Johncocktosten 6 points -1 points (+5|-6) ago 

Says the land whale neckbeard fagit. Fuck you.

0
3

[–] Master_Foo 0 points 3 points (+3|-0) ago 

This land whale neckbeard fagit actually understands how git repositories work. Listen, Son, I've been around these parts a lot longer than your 8 days. This whole Github drama bullshit was put to rest well over a year ago.

0
11

[–] scandalous-goat 0 points 11 points (+11|-0) ago 

They are far more open about their progressive ideology and they feel no remorse banning stuff that they find problematic. In this case, I don't see why they'd need to edit code.

0
6

[–] derram 0 points 6 points (+6|-0) ago 

0
1

[–] Secus 0 points 1 points (+1|-0) ago 

Thanks for this, I've been looking for an alternative.

2
3

[–] 6951338? 2 points 3 points (+5|-2) ago 

The while point of git is that you can't do that, dumbass.

Each commit is hashed, and each new commit builds on the hash of the old one.

Even admins with full edit privileges can't tamper with it, coz right in the code itself you have a stamp of its integrity.

0
2

[–] RotaryProphet 0 points 2 points (+2|-0) ago 

Surreptitiously editing the repo is time consuming and trivial to catch... Forcing your project to adopt an ethics code that insists you take submissions from talentless retards who happen to be non-straight/white/male because not taking their shitty submission would hurt their feelings... that's much more insidious to my way of thinking.

0
2

[–] ThatCuckoldSpez 0 points 2 points (+2|-0) ago 

If you changed a single line of my codebase I would notice the next time I had to debug.

I know it like the back of my hand and I am currently aware of what lines are and are not commented out in my dev branch at the current time.

load more comments ▼ (10 remaining)