brz and symlinks inside branch checkout
Martin Steigerwald
martin at lichtvoll.de
Sun Jun 3 08:51:59 UTC 2018
Martin Steigerwald - 02.06.18, 20:54:
> Aaron Bentley - 02.06.18, 18:50:
> > For example, perhaps you could store everything on your encryptfs
> > filesystem and then symlink or bind-mount some things back into the
> > non-encrypted area. It sounds like the way you currently have it,
> > you're trying to store files from an encrypted filesystem into a
> > Bazaar repository on a non-encrypted filesystem. If that's the
> > case,
> > the files might as well be on a non-encrypted filesystem, too. If
> > some of the files you want commit deserve encryption, then the
> > repository should also be on an encrypted filesystem.
>
> Lol, now that is a point.
>
> I obviously did not think this through.
Fortunately I do not think there are really all that confidential files
in there. I usually so not check in confidentially files into
repositories. So for example I tracked .ssh/authorized_keys with Breezy/
Bazaar and not the private key.
Still I believe now that my use case still leaks information from
withing ecryptfs directory to outside of it and… plan to split the
repos.
--
Martin
More information about the bazaar
mailing list