Use HTTPS for manual git clone to avoid MITM (#6043) - zsh.git - Unnamed repository; edit this file 'description' to name the repository.

diff options

author	Donncha Ó Cearbhaill <donncha@donncha.is>	2018-04-15 18:47:38 +0200
committer	Marc Cornellà <marc.cornella@live.com>	2018-04-15 18:47:38 +0200
commit	4fa4e5fe4ad356e1531bd60715b7e01f510ab083 (patch)
tree	fc9f4bf3a80ca9d91635e5cbe8b8ee8f02de7a19 /plugins
parent	ccd02866f67e704cd4844029c0f5787c0714e21c (diff)
download	zsh-4fa4e5fe4ad356e1531bd60715b7e01f510ab083.tar.gz zsh-4fa4e5fe4ad356e1531bd60715b7e01f510ab083.tar.bz2 zsh-4fa4e5fe4ad356e1531bd60715b7e01f510ab083.zip

Use HTTPS for manual git clone to avoid MITM (#6043)

The git:// transport is completely unauthenticated. An attacker on the local or upstream network can easily man-in-the-middle an oh-my-zsh update and get remote code execution on your system. Only the https:// git transport should be used.

Diffstat (limited to 'plugins')

0 files changed, 0 insertions, 0 deletions


context:
space:
mode: