Re: A couple of questions and concerns about Emacs network security

emacs-devel

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: A couple of questions and concerns about Emacs network security

From:	Paul Eggert
Subject:	Re: A couple of questions and concerns about Emacs network security
Date:	Fri, 22 Jun 2018 17:00:08 -0700
User-agent:	Mozilla/5.0 (X11; Linux x86_64; rv:52.0) Gecko/20100101 Thunderbird/52.8.0

On 06/22/2018 04:21 PM, Lars Ingebrigtsen wrote:

Paul Eggert <address@hidden> writes:

On 06/22/2018 03:00 PM, Jimmy Yuen Ho Wong wrote:

1. Can we update the default network security settings?

Yes, I would think so, in the master branch. As you say, the current
defaults are inappropriate for today's users.

They are?  In what way?

I was concerned about Emacs Lisp code that calls the gnutls APIdirectly. However, you wrote in a later message that Emacs Lisp codedesiring network security should use open-network-stream and use NSM, soperhaps very little (if any) Emacs code is like what I was worriedabout. If so, the defaults shouldn't matter too much.

I like your suggestion of changing the doc strings of gnutls.el to makeit less likely to get future bug reports about this (a la bug#17660etc.). I'm not expert enough in GnuTLS to know what should go into thosedoc strings, though.

[Prev in Thread]

Current Thread

[Next in Thread]

Re: A couple of questions and concerns about Emacs network security, (continued)

Prev by Date: Re: A couple of questions and concerns about Emacs network security
Next by Date: Re: A couple of questions and concerns about Emacs network security
Previous by thread: Re: A couple of questions and concerns about Emacs network security
Next by thread: Re: A couple of questions and concerns about Emacs network security
Index(es):
- Date
- Thread