Programmer Humor

22354 readers

2832 users here now

Welcome to Programmer Humor!

This is a place where you can post jokes, memes, humor, etc. related to programming!

For sharing awful code theres also Programming Horror.

Rules

Keep content in english
No advertisements
Posts must be related to programming or programmer topics

founded 2 years ago

MODERATORS

[email protected]

217

me when i find out i can use ssh to sign my git commits (lemmings.world)

submitted 3 days ago by [email protected] to c/[email protected]

35 comments fedilink hide all child comments

you are viewing a single comment's thread
view the rest of the comments

[–] [email protected] -1 points 3 days ago (1 children)

Wouldn't that mean you'd have to share your public key anyway?
I have the same repos in multiple vms, keeping tabs of that key would be... interesting, considering i often use passwordless-logins across the board.

[–] [email protected] 4 points 3 days ago (1 children)

Wouldn’t that mean you’d have to share your public key anyway?

Public keys aren't meant to be private. The function is literally in the name... But no, you don't necessarily have to share your public key, but for someone to verify that a specific public key was used to sign a commit, the public key is required. So there's absolutely no reason to sign your commits if you intend on keeping your public key, private... It completely defeats the entire purpose....

[–] [email protected] 1 points 3 days ago

Thanks, i know what "public" means.
I don't see "not usually installed on your system" as a strong enough disadvantage to PGP for this use case.