From bdff34c140e2322132a9123afbc32d2eac4cb902f64631bac56006b808d9f3e8 Mon Sep 17 00:00:00 2001 From: Nicholas Johnson Date: Thu, 30 Nov 2023 00:00:00 +0000 Subject: Put TODO inside HOWTO.md --- HOWTO.md | 12 ++++++++++-- 1 file changed, 10 insertions(+), 2 deletions(-) (limited to 'HOWTO.md') diff --git a/HOWTO.md b/HOWTO.md index c926c2d..1b73e8e 100644 --- a/HOWTO.md +++ b/HOWTO.md @@ -10,7 +10,7 @@ To view commit timestamps, run: git log --format=fuller ``` -## Obfuscate Timestamps for Commits and Annotated Tags +## Obfuscate Timestamps for Future Commits and Annotated Tags For maximum privacy, set the author and committer dates to a clearly forged fixed date in UTC inside the interactive shell configuration: @@ -28,7 +28,7 @@ export GIT_COMMITTER_DATE="$GIT_AUTHOR_DATE" Remember that shell environment variables do not change after being set, so dates update only after a new interactive shell is opened. -## Obfuscate Timestamps for Digital Signatures +## Obfuscate Timestamps for Future Digital Signatures For maximum privacy, create a custom version of GnuPG with a fixed timestamp set **between when the signing key was generated and the current date**: @@ -58,6 +58,14 @@ Tell Git to use the new script: git config --global gpg.program /path/to/custom-gpg.sh ``` +## Obfuscate Timestamps for Existing Commits and Annotated Tags + +**TODO**: Demonstrate how to retroactively rewrite Git timestamps for existing commits and annotated tags. + +## Obfuscate Timestamps for Existing Digital Signatures + +**TODO**: Demonstrate how to retroactively rewrite GnuPG timestamps for existing signed commits and signed annotated tags. + ## Forges To prevent forges from tracking Git push times, create a Cron job which pushes the repository at fixed intervals: -- cgit v1.2.3