On Tue, 2004-11-16 at 12:51 -0800, Alexey N. Solofnenko wrote:
Yes to what? Both approaches are functionally equivalent. Darcs only
checks signatures on unsafe mails, but other protocols should check
authenticity themselves (anonymous users should not be able to check
anything in).
Not remotely equivalent. Arch allows me to determine whether my archive
has been modified if the server I host it on has been cracked and
tampered with. Darcs has no such mechanism. (See the case where the
Linux CVS tree mirroring its BK repository was maliciously tampered with
to insert a vulnerability; Arch would have made this detectable, whereas
Darcs has no handling for this case).