git-annex/doc/privacy.mdwn
Joey Hess 341269e035 git-annex (4.20130815) unstable; urgency=low
* assistant, watcher: .gitignore files and other git ignores are now
    honored, when git 1.8.4 or newer is installed.
    (Thanks, Adam Spiers, for getting the necessary support into git for this.)
  * importfeed: Ignores transient problems with feeds. Only exits nonzero
    when a feed has repeatedly had a problems for at least 1 day.
  * importfeed: Fix handling of dots in extensions.
  * Windows: Added support for encrypted special remotes.
  * Windows: Fixed permissions problem that prevented removing files
    from directory special remote. Directory special remotes now fully usable.

# imported from the archive
2013-08-15 04:14:33 -04:00

47 lines
2 KiB
Markdown

git-annex users entrust it with data that is often intensively private.
Here's some things to know about how to maintain your privacy while using
git-annex.
## browsing this web site
This website supports https. [Use it.](https://git-annex.branchable.com/privacy/)
## repository contents
In general, anyone who can clone a git repository gets the ability to see
all current and past filenames in the repository, and their contents.
It's best to assume this also holds true for git-annex, as a general rule.
There are some obvious exceptions: If you `git annex dropunused` old
content from all your repositories, then it's *gone*. If you `git annex
move` files to a offline drive then only those with physical access can see
their content. (The names of the files are still visible to anyone with a
clone of the repository.)
git-annex can encrypt data stored in special remotes. This allows you to
store files in the cloud without exposing their file names, or their
contents. See [[design/encryption]] for details.
When using the shared enctyption method, the encryption key gets stored
in git, and so anyone who has a clone of your repository can decrypt files
from the encrypted special remote.
When using encryption with a GPG key or keys, only those with access to the
GPG key can decrypt the content of files stored in an encrypted special
remote.
## bug reporting
When you file a [[bug]] report on git-annex, you may need to provide
debugging output or details about your repository. In general, git-annex
does not sanitize `--debug` output at all, so it may include the names of
files or other repository details. You should review any debug or other
output you post, and feel free to remove identifying information.
Note that the git-annex assistant *does* sanitize XMPP protocol information
logged when debugging is enabled.
If you prefer not to post information publically, you can send a GPG
encrypted mail to Joey Hess <id@joeyh.name> (gpg key ID 2512E3C7).
Or you can post a public bug report, and send a followup email with private
details.