From 235ec24352e151bed37063a004b9800ee0debd74 Mon Sep 17 00:00:00 2001
From: Matt McCutchen <matt@mattmccutchen.net>
Date: Mon, 14 Nov 2016 13:20:24 -0500
Subject: doc: mention transfer data leaks in more places

The "SECURITY" section of the gitnamespaces(7) man page described two
ways for a client to steal data from a server that wasn't intended to be
shared. Similar attacks can be performed by a server on a client, so
adapt the section to cover both directions and add it to the
git-fetch(1), git-pull(1), and git-push(1) man pages. Also add
references to this section from the documentation of server
configuration options that attempt to control data leakage but may not
be fully effective.

Signed-off-by: Matt McCutchen <matt@mattmccutchen.net>
Signed-off-by: Junio C Hamano <gitster@pobox.com>
---
 Documentation/git-push.txt | 2 ++
 1 file changed, 2 insertions(+)

(limited to 'Documentation/git-push.txt')

diff --git a/Documentation/git-push.txt b/Documentation/git-push.txt
index cf6ee4a4df..8234136f2d 100644
--- a/Documentation/git-push.txt
+++ b/Documentation/git-push.txt
@@ -552,6 +552,8 @@ Commits A and B would no longer belong to a branch with a symbolic name,
 and so would be unreachable.  As such, these commits would be removed by
 a `git gc` command on the origin repository.
 
+include::transfer-data-leaks.txt[]
+
 GIT
 ---
 Part of the linkgit:git[1] suite
-- 
cgit v1.3-5-g9baa