[Top][All Lists]

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: [PATCH] package.el: check tarball signature

From: Ted Zlatanov
Subject: Re: [PATCH] package.el: check tarball signature
Date: Sat, 05 Oct 2013 06:03:14 -0400
User-agent: Gnus/5.130008 (Ma Gnus v0.8) Emacs/24.3.50 (gnu/linux)

On Sat, 05 Oct 2013 14:40:46 +0900 "Stephen J. Turnbull" <address@hidden> 

SJT> Daiki Ueno writes:
>> Ted Zlatanov <address@hidden> writes:
>> > I can put up my current patch for review but I still have HMAC, maybe
>> > UMAC, and RSA+DSA+ECC crypto to finish.  The hashing methods and the
>> > ciphers in ECB, CBC, and CTR modes are done with tests.  Should I make a
>> > Bazaar branch for that work?  Is anyone interested in reviewing it?
SJT> Still, the whole idea worries me; there's no reason to suppose it will
SJT> increase security, and Ted never has seemed to grasp that security is
SJT> not a SMOP, nor that security is inherently inconvenient.

I find that mildly offensive.

SJT> Quis custodiat ipsos custodes?  Do you really want to put a
SJT> possible fox in charge of the security check at the henhouse door?

My work will be open for review before it goes in.  I suggest you
criticize the work, not me or my motivations.


reply via email to

[Prev in Thread] Current Thread [Next in Thread]