From mboxrd@z Thu Jan 1 00:00:00 1970 Path: news.gmane.org!not-for-mail From: Ted Zlatanov Newsgroups: gmane.emacs.bugs Subject: bug#17625: 24.4.50; All installed packages marked "unsigned", no archive listed Date: Thu, 05 Jun 2014 10:24:28 -0400 Organization: =?UTF-8?Q?=D0=A2=D0=B5=D0=BE=D0=B4=D0=BE=D1=80_?= =?UTF-8?Q?=D0=97=D0=BB=D0=B0=D1=82=D0=B0=D0=BD=D0=BE=D0=B2?= @ Cienfuegos Message-ID: <8738fjh1sz.fsf@lifelogs.com> References: <87tx89ffax.fsf@pellet.i-did-not-set--mail-host-address--so-tickle-me> <2vvbsnrgpk.fsf@fencepost.gnu.org> NNTP-Posting-Host: plane.gmane.org Mime-Version: 1.0 Content-Type: text/plain X-Trace: ger.gmane.org 1401979368 26684 80.91.229.3 (5 Jun 2014 14:42:48 GMT) X-Complaints-To: usenet@ger.gmane.org NNTP-Posting-Date: Thu, 5 Jun 2014 14:42:48 +0000 (UTC) Cc: Eric Abrahamsen , 17625@debbugs.gnu.org To: Glenn Morris Original-X-From: bug-gnu-emacs-bounces+geb-bug-gnu-emacs=m.gmane.org@gnu.org Thu Jun 05 16:42:38 2014 Return-path: Envelope-to: geb-bug-gnu-emacs@m.gmane.org Original-Received: from lists.gnu.org ([208.118.235.17]) by plane.gmane.org with esmtp (Exim 4.69) (envelope-from ) id 1WsYsD-0007li-4w for geb-bug-gnu-emacs@m.gmane.org; Thu, 05 Jun 2014 16:42:33 +0200 Original-Received: from localhost ([::1]:41807 helo=lists.gnu.org) by lists.gnu.org with esmtp (Exim 4.71) (envelope-from ) id 1WsYsC-00081a-N2 for geb-bug-gnu-emacs@m.gmane.org; Thu, 05 Jun 2014 10:42:32 -0400 Original-Received: from eggs.gnu.org ([2001:4830:134:3::10]:52301) by lists.gnu.org with esmtp (Exim 4.71) (envelope-from ) id 1WsYbP-0002xq-26 for bug-gnu-emacs@gnu.org; Thu, 05 Jun 2014 10:25:16 -0400 Original-Received: from Debian-exim by eggs.gnu.org with spam-scanned (Exim 4.71) (envelope-from ) id 1WsYbH-0001A5-B1 for bug-gnu-emacs@gnu.org; Thu, 05 Jun 2014 10:25:10 -0400 Original-Received: from debbugs.gnu.org ([140.186.70.43]:46942) by eggs.gnu.org with esmtp (Exim 4.71) (envelope-from ) id 1WsYbH-00018h-7W for bug-gnu-emacs@gnu.org; Thu, 05 Jun 2014 10:25:03 -0400 Original-Received: from Debian-debbugs by debbugs.gnu.org with local (Exim 4.80) (envelope-from ) id 1WsYbF-0006sP-V5 for bug-gnu-emacs@gnu.org; Thu, 05 Jun 2014 10:25:02 -0400 X-Loop: help-debbugs@gnu.org Resent-From: Ted Zlatanov Original-Sender: "Debbugs-submit" Resent-CC: bug-gnu-emacs@gnu.org Resent-Date: Thu, 05 Jun 2014 14:25:01 +0000 Resent-Message-ID: Resent-Sender: help-debbugs@gnu.org X-GNU-PR-Message: followup 17625 X-GNU-PR-Package: emacs X-GNU-PR-Keywords: Original-Received: via spool by 17625-submit@debbugs.gnu.org id=B17625.140197828126392 (code B ref 17625); Thu, 05 Jun 2014 14:25:01 +0000 Original-Received: (at 17625) by debbugs.gnu.org; 5 Jun 2014 14:24:41 +0000 Original-Received: from localhost ([127.0.0.1]:45819 helo=debbugs.gnu.org) by debbugs.gnu.org with esmtp (Exim 4.80) (envelope-from ) id 1WsYar-0006rW-Kn for submit@debbugs.gnu.org; Thu, 05 Jun 2014 10:24:41 -0400 Original-Received: from mail-qg0-f50.google.com ([209.85.192.50]:64638) by debbugs.gnu.org with esmtp (Exim 4.80) (envelope-from ) id 1WsYam-0006rD-PH for 17625@debbugs.gnu.org; Thu, 05 Jun 2014 10:24:36 -0400 Original-Received: by mail-qg0-f50.google.com with SMTP id z60so1655297qgd.23 for <17625@debbugs.gnu.org>; Thu, 05 Jun 2014 07:24:27 -0700 (PDT) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=lifelogs.com; s=google; h=from:to:cc:subject:organization:references:mail-copies-to :gmane-reply-to-list:date:in-reply-to:message-id:user-agent :mime-version:content-type; bh=021iMwo8ffniFGscNuYFRWIcqEJWjkSEYipLICTBW8k=; b=uKdxkaAIznm1tK9wMceCQV7YxGsS32e7SKV0HIqSVnI9IOOhPLYlF07JVlfDw481HO SU/Pk1AJnU8W9e5I5smOP/2AIVMMt8Bo0ZL07Bhc6qzkdxxnVAP8FkBlyNFLOt4tA8eb gHgZyvBGY4Our9aW1aWVFHLcgpSo7vZdQFaGM= X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20130820; h=x-gm-message-state:from:to:cc:subject:organization:references :mail-copies-to:gmane-reply-to-list:date:in-reply-to:message-id :user-agent:mime-version:content-type; bh=021iMwo8ffniFGscNuYFRWIcqEJWjkSEYipLICTBW8k=; b=gQgF/0Zy8CBjm41IBnANzZxMywkS0rY0Ni3vgdcNCUlGVe2Cewv3fbshNB8hviz0oC DrnUcrT6s4Gxh8A5/pFsPuoiD9ZaKqF6sfI08w4HaPvlbRlwz0q/RTgymo9gLLC8KYsY FGHdIG2qQbz7iqr36GSrI5en8sqyvhQ+hUIoX3AD/4kMsdYtuA3ia0INc1ctCMG8JRax 0MbSVtzsjoamy0Y3/XT5FNvZ8envbxIQk4ZcYO9XjeQfQZie/TZujthLarrTq8OFgEN7 8YQ7m+pEuDzU1oQIbx3+3dhi5ZipmJsiZy569pwnF4Y/i5imHSsgM4Hg2wHPtpqYA+Bh 8tdQ== X-Gm-Message-State: ALoCoQlsBK2eLVCtxt0ufgN5/4cY7PaOu7gtKwIUaKVQy8WTELKIIHZF28LTmD1jtyNHajUnW0IG X-Received: by 10.140.42.165 with SMTP id c34mr78102469qga.40.1401978266860; Thu, 05 Jun 2014 07:24:26 -0700 (PDT) Original-Received: from flea (c-98-229-61-72.hsd1.ma.comcast.net. [98.229.61.72]) by mx.google.com with ESMTPSA id u7sm9696705qat.2.2014.06.05.07.24.25 for (version=TLSv1.2 cipher=RC4-SHA bits=128/128); Thu, 05 Jun 2014 07:24:26 -0700 (PDT) X-Face: bd.DQ~'29fIs`T_%O%C\g%6jW)yi[zuz6; d4V0`@y-~$#3P_Ng{@m+e4o<4P'#(_GJQ%TT= D}[Ep*b!\e,fBZ'j_+#"Ps?s2!4H2-Y"sx" Mail-Copies-To: never Gmane-Reply-To-List: yes In-Reply-To: (Glenn Morris's message of "Sat, 31 May 2014 17:28:16 -0400") User-Agent: Gnus/5.130008 (Ma Gnus v0.8) Emacs/24.4.50 (gnu/linux) X-BeenThere: debbugs-submit@debbugs.gnu.org X-Mailman-Version: 2.1.15 Precedence: list X-detected-operating-system: by eggs.gnu.org: GNU/Linux 3.x X-Received-From: 140.186.70.43 X-BeenThere: bug-gnu-emacs@gnu.org List-Id: "Bug reports for GNU Emacs, the Swiss army knife of text editors" List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , Errors-To: bug-gnu-emacs-bounces+geb-bug-gnu-emacs=m.gmane.org@gnu.org Original-Sender: bug-gnu-emacs-bounces+geb-bug-gnu-emacs=m.gmane.org@gnu.org Xref: news.gmane.org gmane.emacs.bugs:90052 Archived-At: On Sat, 31 May 2014 17:28:16 -0400 Glenn Morris wrote: GM> Stefan Monnier wrote: >> I guess we could move the archive-generation process to another machine, GM> I won't pretend to know what I'm talking about, but I think that's the GM> kind of thing you have to do if this is to have any real value. I suggested to Stefan and on emacs-devel that the signing process should be manual and after review. That's how it works for Debian, for instance. The concern from several people was that this would be hard on the GNU ELPA maintainers. I think it's still worth doing, especially if the task can be delegated and contributors are required to sign their Git commits. GM> And for an inherently-not-very-secure environment like Emacs, is it worth it? I think so. These packages can run arbitrary code and Emacs makes it very easy to install them. >> AFAIK we currently use http://elpa.gnu.org/packages/, so no SSL >> involved. GM> Right. Will it Just Work to change that to https? >> I don't enough about SSL certs to be sure whether it would provide >> comparable guarantees to signed packages. GM> I think SSL would verify that you are talking to the server that you GM> thought you were talking too, and that no-one had injected anything in GM> between you and it. Which is all that gpg-signed packages would do, if GM> the machine that hosts the packages also does the signing (AFAICS). The file, the signature, and the GNU ELPA maintainers' public key have to match; MITM attacks can't subvert that AFAIK. Ted