From mboxrd@z Thu Jan  1 00:00:00 1970
Path: news.gmane.org!.POSTED!not-for-mail
From: Eli Zaretskii <eliz@gnu.org>
Newsgroups: gmane.emacs.bugs
Subject: bug#31946: 27.0.50; The NSM should warn about more TLS problems
Date: Tue, 26 Jun 2018 17:38:28 +0300
Message-ID: <83lgb1r4t7.fsf@gnu.org>
References: <m3vaa9aius.fsf@gnus.org> <87fu1apchn.fsf@gmail.com>
	<CAKDRQS55hY+tF0jDT0wZsPJOcFxZ33m+mFVrT7duNQYp28JJMw@mail.gmail.com>
	<CAKDRQS44d1==5PkFon3Zgujm4G2FjR9RmK27H+RF7gOJOMKzPA@mail.gmail.com>
NNTP-Posting-Host: blaine.gmane.org
X-Trace: blaine.gmane.org 1530023829 1750 195.159.176.226 (26 Jun 2018 14:37:09 GMT)
X-Complaints-To: usenet@blaine.gmane.org
NNTP-Posting-Date: Tue, 26 Jun 2018 14:37:09 +0000 (UTC)
Cc: larsi@gnus.org, 31946@debbugs.gnu.org, npostavs@gmail.com
To: Jimmy Yuen Ho Wong <wyuenho@gmail.com>
Original-X-From: bug-gnu-emacs-bounces+geb-bug-gnu-emacs=m.gmane.org@gnu.org Tue Jun 26 16:37:05 2018
Return-path: <bug-gnu-emacs-bounces+geb-bug-gnu-emacs=m.gmane.org@gnu.org>
Envelope-to: geb-bug-gnu-emacs@m.gmane.org
Original-Received: from lists.gnu.org ([208.118.235.17])
	by blaine.gmane.org with esmtp (Exim 4.84_2)
	(envelope-from <bug-gnu-emacs-bounces+geb-bug-gnu-emacs=m.gmane.org@gnu.org>)
	id 1fXp5b-0000Ia-4s
	for geb-bug-gnu-emacs@m.gmane.org; Tue, 26 Jun 2018 16:37:03 +0200
Original-Received: from localhost ([::1]:53109 helo=lists.gnu.org)
	by lists.gnu.org with esmtp (Exim 4.71)
	(envelope-from <bug-gnu-emacs-bounces+geb-bug-gnu-emacs=m.gmane.org@gnu.org>)
	id 1fXp7i-0002pN-KN
	for geb-bug-gnu-emacs@m.gmane.org; Tue, 26 Jun 2018 10:39:14 -0400
Original-Received: from eggs.gnu.org ([2001:4830:134:3::10]:46237)
	by lists.gnu.org with esmtp (Exim 4.71)
	(envelope-from <Debian-debbugs@debbugs.gnu.org>) id 1fXp7b-0002p3-Gj
	for bug-gnu-emacs@gnu.org; Tue, 26 Jun 2018 10:39:08 -0400
Original-Received: from Debian-exim by eggs.gnu.org with spam-scanned (Exim 4.71)
	(envelope-from <Debian-debbugs@debbugs.gnu.org>) id 1fXp7W-0007f2-Ko
	for bug-gnu-emacs@gnu.org; Tue, 26 Jun 2018 10:39:07 -0400
Original-Received: from debbugs.gnu.org ([208.118.235.43]:56674)
	by eggs.gnu.org with esmtps (TLS1.0:RSA_AES_128_CBC_SHA1:16)
	(Exim 4.71) (envelope-from <Debian-debbugs@debbugs.gnu.org>)
	id 1fXp7W-0007ea-GI
	for bug-gnu-emacs@gnu.org; Tue, 26 Jun 2018 10:39:02 -0400
Original-Received: from Debian-debbugs by debbugs.gnu.org with local (Exim 4.84_2)
	(envelope-from <Debian-debbugs@debbugs.gnu.org>) id 1fXp7W-0000Xn-9l
	for bug-gnu-emacs@gnu.org; Tue, 26 Jun 2018 10:39:02 -0400
X-Loop: help-debbugs@gnu.org
Resent-From: Eli Zaretskii <eliz@gnu.org>
Original-Sender: "Debbugs-submit" <debbugs-submit-bounces@debbugs.gnu.org>
Resent-CC: bug-gnu-emacs@gnu.org
Resent-Date: Tue, 26 Jun 2018 14:39:02 +0000
Resent-Message-ID: <handler.31946.B31946.15300239202055@debbugs.gnu.org>
Resent-Sender: help-debbugs@gnu.org
X-GNU-PR-Message: followup 31946
X-GNU-PR-Package: emacs
X-GNU-PR-Keywords: security
Original-Received: via spool by 31946-submit@debbugs.gnu.org id=B31946.15300239202055
	(code B ref 31946); Tue, 26 Jun 2018 14:39:02 +0000
Original-Received: (at 31946) by debbugs.gnu.org; 26 Jun 2018 14:38:40 +0000
Original-Received: from localhost ([127.0.0.1]:36338 helo=debbugs.gnu.org)
	by debbugs.gnu.org with esmtp (Exim 4.84_2)
	(envelope-from <debbugs-submit-bounces@debbugs.gnu.org>)
	id 1fXp7A-0000X5-1K
	for submit@debbugs.gnu.org; Tue, 26 Jun 2018 10:38:40 -0400
Original-Received: from eggs.gnu.org ([208.118.235.92]:55079)
	by debbugs.gnu.org with esmtp (Exim 4.84_2)
	(envelope-from <eliz@gnu.org>) id 1fXp77-0000Wp-5e
	for 31946@debbugs.gnu.org; Tue, 26 Jun 2018 10:38:38 -0400
Original-Received: from Debian-exim by eggs.gnu.org with spam-scanned (Exim 4.71)
	(envelope-from <eliz@gnu.org>) id 1fXp6w-0007R6-RF
	for 31946@debbugs.gnu.org; Tue, 26 Jun 2018 10:38:31 -0400
Original-Received: from fencepost.gnu.org ([2001:4830:134:3::e]:58677)
	by eggs.gnu.org with esmtp (Exim 4.71) (envelope-from <eliz@gnu.org>)
	id 1fXp6w-0007Qw-Ne; Tue, 26 Jun 2018 10:38:26 -0400
Original-Received: from [176.228.60.248] (port=2384 helo=home-c4e4a596f7)
	by fencepost.gnu.org with esmtpsa (TLS1.2:RSA_AES_256_CBC_SHA1:256)
	(Exim 4.82) (envelope-from <eliz@gnu.org>)
	id 1fXp6w-00067W-3H; Tue, 26 Jun 2018 10:38:26 -0400
In-reply-to: <CAKDRQS44d1==5PkFon3Zgujm4G2FjR9RmK27H+RF7gOJOMKzPA@mail.gmail.com>
	(message from Jimmy Yuen Ho Wong on Tue, 26 Jun 2018 07:26:20 +0100)
X-detected-operating-system: by eggs.gnu.org: GNU/Linux 2.2.x-3.x [generic]
X-BeenThere: debbugs-submit@debbugs.gnu.org
X-Mailman-Version: 2.1.18
Precedence: list
X-detected-operating-system: by eggs.gnu.org: GNU/Linux 2.2.x-3.x [generic]
X-Received-From: 208.118.235.43
X-BeenThere: bug-gnu-emacs@gnu.org
List-Id: "Bug reports for GNU Emacs,
	the Swiss army knife of text editors" <bug-gnu-emacs.gnu.org>
List-Unsubscribe: <https://lists.gnu.org/mailman/options/bug-gnu-emacs>,
	<mailto:bug-gnu-emacs-request@gnu.org?subject=unsubscribe>
List-Archive: <http://lists.gnu.org/archive/html/bug-gnu-emacs/>
List-Post: <mailto:bug-gnu-emacs@gnu.org>
List-Help: <mailto:bug-gnu-emacs-request@gnu.org?subject=help>
List-Subscribe: <https://lists.gnu.org/mailman/listinfo/bug-gnu-emacs>,
	<mailto:bug-gnu-emacs-request@gnu.org?subject=subscribe>
Errors-To: bug-gnu-emacs-bounces+geb-bug-gnu-emacs=m.gmane.org@gnu.org
Original-Sender: "bug-gnu-emacs"
	<bug-gnu-emacs-bounces+geb-bug-gnu-emacs=m.gmane.org@gnu.org>
Xref: news.gmane.org gmane.emacs.bugs:147835
Archived-At: <http://permalink.gmane.org/gmane.emacs.bugs/147835>

> From: Jimmy Yuen Ho Wong <wyuenho@gmail.com>
> Date: Tue, 26 Jun 2018 07:26:20 +0100
> Cc: Lars Ingebrigtsen <larsi@gnus.org>, 31946@debbugs.gnu.org
> 
> 1. Forget about defining what tests belongs in what levels, there should just be one level which is the default
> sets of tests, let's call this coarse grain setting.
> 2. Fine grain settings should only allow you to **add** to the default list of checks, so it will be a defcustom of
> an alist (there's prior art of this), let's call this `nsm-additional-checks`
> 3. We can predefine a bunch of check functions that users can add to `nsm-additional-checks` without having
> to write their own.

FWIW, I don't think this will fly with our users: Emacs users don't
like to be second-guessed, nor be told that "Emacs knows better".  And
even if we do go that way, Emacs is not a black box: people will soon
enough discover what we want to conceal, and will do what they want
regardless.

What we can, and probably should, do is prominently document each test
and warn against removing or weakening those which will expose users
to security vulnerabilities.