From: Jens Lechtenboerger <jens.lechtenboerger@fsfe.org>
To: 16978@debbugs.gnu.org
Subject: bug#16978: 24.3; SSL/TLS with multiple man-in-the-middle vulnerabilities
Date: Tue, 18 Mar 2014 22:04:08 +0100 [thread overview]
Message-ID: <86y5078bhz.fsf@informationelle-selbstbestimmung-im-internet.de> (raw)
In-Reply-To: <86siqqv938.fsf@informationelle-selbstbestimmung-im-internet.de>
On 2014-03-17, Ted Zlatanov wrote:
> On Mon, 10 Mar 2014 07:52:43 +0100 Jens Lechtenboerger
> <jens.lechtenboerger@fsfe.org> wrote:
>
> JL> gnutls-cli --tofu opens a TLS connection and asks whether the
> JL> certificate can be trusted.
> JL> [...]
> JL> to prevent the process from hanging while waiting for the
> JL> user's reply, option --strict-tofu (introduced in GnuTLS
> JL> 3.2.12) can be used.
>
> That's wonderful, but please realize this doesn't work for Emacs because
> often, interactive prompting would not be available. The consensus so
> far has been to abort the connection and tell the user how to allow a
> host specifically.
Hi Ted,
are you outlining plans for the future? According to what I
observed so far, I’m either vulnerable to MITM attacks or I cannot
use servers with self-signed certificates.
I see three partially contradictory requirements here:
1. No interactive prompting.
2. Allow self-signed certificates.
3. Protect against MITM attacks (at least those involving
self-signed forged certs; better yet, also with “trusted” forged
certs).
Among those three, at most two can be guaranteed simultaneously.
From http://debbugs.gnu.org/13374 I got the impression that (2) is a
must. (I rely on self-signed certs as well.) In addition, in my
view (3) is a must. Others may disagree and choose the convenience of
(1) over the security of (3). If Emacs defaults to (1) over (3)
based on a deliberate decision, that decision needs to be documented
prominently.
Coming back to your comment, I believe that --strict-tofu satisfies
precisely what you describe: It aborts the connection, and you can
add the new certificate with --tofu.
> Can you suggest a cleaner way, perhaps using TOFU
> with some C automation?
I’m not really sure what you are looking for.
> (`gnutls-cli' should not be assumed to be available)
Sadly, that’s true. But it could (a) be recommended and (b) be used
if it is available (and (c) be used in a safer way).
> I appreciate all your review. It's too late to make these changes for
> 24.4, but I think if you can review the state of things in 24.4, maybe
> we could discuss an expedited 24.5 release with security fixes (that
> would be up to the Emacs maintainers, of course).
I’ll certainly work with 24.4. Just let me know what kind of input
you need then.
Best wishes
Jens
next prev parent reply other threads:[~2014-03-18 21:04 UTC|newest]
Thread overview: 12+ messages / expand[flat|nested] mbox.gz Atom feed top
2014-03-10 6:52 bug#16978: 24.3; SSL/TLS with multiple man-in-the-middle vulnerabilities Jens Lechtenboerger
2014-03-10 7:04 ` Glenn Morris
2014-03-11 17:04 ` Jens Lechtenboerger
2014-03-17 21:33 ` Ted Zlatanov
2014-03-18 21:25 ` Jens Lechtenboerger
2014-03-17 21:06 ` Ted Zlatanov
2014-03-18 21:04 ` Jens Lechtenboerger [this message]
2014-03-20 13:43 ` Ted Zlatanov
2014-03-20 14:39 ` Lars Magne Ingebrigtsen
2014-03-21 10:24 ` Ted Zlatanov
2014-03-24 12:14 ` Lars Magne Ingebrigtsen
2014-03-21 20:49 ` Jens Lechtenboerger
Reply instructions:
You may reply publicly to this message via plain-text email
using any one of the following methods:
* Save the following mbox file, import it into your mail client,
and reply-to-all from there: mbox
Avoid top-posting and favor interleaved quoting:
https://en.wikipedia.org/wiki/Posting_style#Interleaved_style
List information: https://www.gnu.org/software/emacs/
* Reply using the --to, --cc, and --in-reply-to
switches of git-send-email(1):
git send-email \
--in-reply-to=86y5078bhz.fsf@informationelle-selbstbestimmung-im-internet.de \
--to=jens.lechtenboerger@fsfe.org \
--cc=16978@debbugs.gnu.org \
/path/to/YOUR_REPLY
https://kernel.org/pub/software/scm/git/docs/git-send-email.html
* If your mail client supports setting the In-Reply-To header
via mailto: links, try the mailto: link
Be sure your reply has a Subject: header at the top and a blank line
before the message body.
Code repositories for project(s) associated with this public inbox
https://git.savannah.gnu.org/cgit/emacs.git
This is a public inbox, see mirroring instructions
for how to clone and mirror all data and code used for this inbox;
as well as URLs for read-only IMAP folder(s) and NNTP newsgroup(s).