Google Code-in

Git is a very widely used version control system. It stores various revisions of edits made to files, identified by commits. It also tracks the user who contributed which parts of the code as the part of the commit identity, using the user’s full name and email addresses. Unfortunately, it is trivial to forge the commit identities. A stronger form of authentication of commits is required. This is traditionally carried out by signing the Git commits with a PGP key.

Goals

Verify and create a blog post including steps to setup a PGP key, publish it to the world and configure git to sign commits. It may also include instructions to setup PGP keys with Github. Include relevant screenshots where necessary.

Deliverables

• Create a blog post and share it with amitosh@fedoraproject.org
• The post can be a Google Docs document, a Word document or a Github Gist written in markdown.