'Can you really impersonate anyone via git commits?

If you set your repo config to some fake info:

[user]
    name = Bill Gates
    email = [email protected]

And push commits, the commit on Github show the name and email as the identifier for the commit.

Surely, this opens impersonation issues. Am I missing something?

From my understanding: If you have permission to push commits to a repo, you can technically impersonate anyone.

Am I correct in thinking this?

git


Solution 1:[1]

The original workflow that was used with Git, and one that is still used by Git and Linux, is a patch-based workflow. In this workflow, you send a patch with your name and email address, and people respond to your email to comment on it, and at some point, the maintainer applies the patch to their tree.

In such a case, having the ability to push commits with arbitrary author and committer information is important. The maintainer may well modify your patch slightly to make sure it applies on top of other code, so a digital signature over the contents of the patch might not be helpful. If your email were invalid, then the maintainer would not be able to email you, and you wouldn't respond to feedback, and nobody would apply your patch.

And of course you can specify a (nearly) arbitrary name. Git has no way to know what your name is, and GitHub would only know what name is on your credit card (if you're a paying customer) or your tax paperwork (if you're a recipient in GitHub Sponsors). Your credit card may or may not contain your legal name (think about a celebrity who goes by a stage name) and many people customarily go by a name (e.g., a middle name, shortened name, or nickname) that isn't their legal name, anyway, in addition to various other reasons someone might choose to use a certain name.

So, yes, you can embed arbitrary names and email addresses in the commit. If you'd like to prevent people from tampering with your commits, then you should end up signing your commits. If you do so, you can have GitHub mark any unsigned commits as explicitly unverified in the appropriate settings page.

Sources

This article follows the attribution requirements of Stack Overflow and is licensed under CC BY-SA 3.0.

Source: Stack Overflow

Solution Source
Solution 1 bk2204

Related Questions

Given long git commit how to safely get short commit

Given long git commit how to safely get short commit

Given long git commit how to safely get short commit

How can I 'git clone' from another machine?

VS Code / Bitbucket / SSH - Permission denied (publickey)

Differences between git pull origin master & git pull origin/master

git config: remote.<name>.fetch - is it possible to set up exceptions?

Git push hangs when pushing to Github?

How to clone git repository with specific revision/changeset?

Remove a file from the list that will be committed

Unable to create '/git/index.lock': File exists - but it doesn't

VSTS: How to get all linked work items since last successful release to production?

Versioning of debian packaging Information

How to generate ssh keys (for github)

How do I commit case-sensitive only filename changes in Git?