bug#19283: 25.0.50; imap.el with man-in-the-middle vulnerability

unofficial mirror of bug-gnu-emacs@gnu.org 
 help / color / mirror / code / Atom feed

* bug#19283: 25.0.50; imap.el with man-in-the-middle vulnerability
@ 2014-12-05 19:38 Jens Lechtenboerger
  2014-12-05 19:47 ` Andreas Schwab
  2015-12-26 21:31 ` Lars Ingebrigtsen
  0 siblings, 2 replies; 4+ messages in thread
From: Jens Lechtenboerger @ 2014-12-05 19:38 UTC (permalink / raw)
  To: 19283

This is a followup to bug#16978, where I reported multiple MITM
issues.

imap.el uses openssl's s_client via imap-ssl-program.

From the man page:
> The s_client utility is a test tool and is designed to continue
> the handshake after any certificate verification errors. As a
> result it will accept any certificate chain (trusted or not) sent
> by the peer. None test applications should not do this as it makes
> them vulnerable to a MITM attack. This behaviour can be changed by
> with the -verify_return_error option: any verify errors are then
> returned aborting the handshake.

In addition, imap.el only tries SSLv2 and SSLv3, whose end-of-life
might be near.  I cannot access some of my servers at all (as they
only allow TLS).

If the above was fixed, one would still be vulnerable to attacks
with “trusted” certificates.

imap.el should probably use nsm.el.  In the meantime, I continue to
use the following:
(setq imap-ssl-program '("gnutls-cli --strict-tofu -p %p %s"))

Best wishes
Jens

^ permalink raw reply	[flat|nested] 4+ messages in thread

* bug#19283: 25.0.50; imap.el with man-in-the-middle vulnerability
  2014-12-05 19:38 bug#19283: 25.0.50; imap.el with man-in-the-middle vulnerability Jens Lechtenboerger
@ 2014-12-05 19:47 ` Andreas Schwab
  2014-12-05 20:39   ` Jens Lechtenboerger
  2015-12-26 21:31 ` Lars Ingebrigtsen
  1 sibling, 1 reply; 4+ messages in thread
From: Andreas Schwab @ 2014-12-05 19:47 UTC (permalink / raw)
  To: Jens Lechtenboerger; +Cc: 19283

Jens Lechtenboerger <jens.lechtenboerger@fsfe.org> writes:

> In addition, imap.el only tries SSLv2 and SSLv3,

imap.el always tries STARTTLS and TLS before SSL, unless you force it to
do otherwise.

Andreas.

-- 
Andreas Schwab, schwab@linux-m68k.org
GPG Key fingerprint = 58CA 54C7 6D53 942B 1756  01D3 44D5 214B 8276 4ED5
"And now for something completely different."





^ permalink raw reply	[flat|nested] 4+ messages in thread

* bug#19283: 25.0.50; imap.el with man-in-the-middle vulnerability
  2014-12-05 19:47 ` Andreas Schwab
@ 2014-12-05 20:39   ` Jens Lechtenboerger
  0 siblings, 0 replies; 4+ messages in thread
From: Jens Lechtenboerger @ 2014-12-05 20:39 UTC (permalink / raw)
  To: Andreas Schwab; +Cc: 19283

On 2014-12-05, Andreas Schwab wrote:

> Jens Lechtenboerger <jens.lechtenboerger@fsfe.org> writes:
>
>> In addition, imap.el only tries SSLv2 and SSLv3,
>
> imap.el always tries STARTTLS and TLS before SSL, unless you force it to
> do otherwise.

I’m sorry, I meant to talk about imap-ssl-program, which I mentioned
above that quote.  So it should read: “imap-ssl-program in imap.el
only tries SSLv2 and SSLv3”

But you are right, I’m using “:stream ssl” among mail-sources.
If I remove that, the connection uses STARTTLS, which ultimately
calls starttls-gnutls-program, for which I suggested
(setq starttls-extra-arguments '("--strict-tofu"))
in bug#16978 to avoid MITM with “trusted” certificates.

Changing to “:stream tls” seems to invoke tls-program, about which I
filed bug#19284.

Best wishes
Jens

^ permalink raw reply	[flat|nested] 4+ messages in thread

* bug#19283: 25.0.50; imap.el with man-in-the-middle vulnerability
  2014-12-05 19:38 bug#19283: 25.0.50; imap.el with man-in-the-middle vulnerability Jens Lechtenboerger
  2014-12-05 19:47 ` Andreas Schwab
@ 2015-12-26 21:31 ` Lars Ingebrigtsen
  1 sibling, 0 replies; 4+ messages in thread
From: Lars Ingebrigtsen @ 2015-12-26 21:31 UTC (permalink / raw)
  To: Jens Lechtenboerger; +Cc: 19283

Jens Lechtenboerger <jens.lechtenboerger@fsfe.org> writes:

> This is a followup to bug#16978, where I reported multiple MITM
> issues.
>
> imap.el uses openssl's s_client via imap-ssl-program.

This has been fixed in Emacs 25.1 now.

-- 
(domestic pets only, the antidote for overdose, milk.)
   bloggy blog: http://lars.ingebrigtsen.no





^ permalink raw reply	[flat|nested] 4+ messages in thread

end of thread, other threads:[~2015-12-26 21:31 UTC | newest]

Thread overview: 4+ messages (download: mbox.gz follow: Atom feed
-- links below jump to the message on this page --
2014-12-05 19:38 bug#19283: 25.0.50; imap.el with man-in-the-middle vulnerability Jens Lechtenboerger
2014-12-05 19:47 ` Andreas Schwab
2014-12-05 20:39   ` Jens Lechtenboerger
2015-12-26 21:31 ` Lars Ingebrigtsen

Code repositories for project(s) associated with this public inbox

	https://git.savannah.gnu.org/cgit/emacs.git

This is a public inbox, see mirroring instructions
for how to clone and mirror all data and code used for this inbox;
as well as URLs for read-only IMAP folder(s) and NNTP newsgroup(s).