From mboxrd@z Thu Jan 1 00:00:00 1970 Path: news.gmane.org!not-for-mail From: Stefan Monnier Newsgroups: gmane.emacs.bugs Subject: bug#17625: 24.4.50; All installed packages marked "unsigned", no archive listed Date: Tue, 30 Sep 2014 11:46:46 -0400 Message-ID: References: <87tx89ffax.fsf@pellet.i-did-not-set--mail-host-address--so-tickle-me> <2vvbsnrgpk.fsf@fencepost.gnu.org> <87mwczagnm.fsf@lifelogs.com> <87ionna453.fsf@lifelogs.com> <87egyb9ns6.fsf@lifelogs.com> <87fvfahrq5.fsf@lifelogs.com> <87h9zp5q1w.fsf@lifelogs.com> NNTP-Posting-Host: plane.gmane.org Mime-Version: 1.0 Content-Type: text/plain X-Trace: ger.gmane.org 1412092109 24819 80.91.229.3 (30 Sep 2014 15:48:29 GMT) X-Complaints-To: usenet@ger.gmane.org NNTP-Posting-Date: Tue, 30 Sep 2014 15:48:29 +0000 (UTC) To: 17625@debbugs.gnu.org Original-X-From: bug-gnu-emacs-bounces+geb-bug-gnu-emacs=m.gmane.org@gnu.org Tue Sep 30 17:48:22 2014 Return-path: Envelope-to: geb-bug-gnu-emacs@m.gmane.org Original-Received: from lists.gnu.org ([208.118.235.17]) by plane.gmane.org with esmtp (Exim 4.69) (envelope-from ) id 1XYzf3-0001Y5-Ku for geb-bug-gnu-emacs@m.gmane.org; Tue, 30 Sep 2014 17:48:21 +0200 Original-Received: from localhost ([::1]:44041 helo=lists.gnu.org) by lists.gnu.org with esmtp (Exim 4.71) (envelope-from ) id 1XYzf3-0002Ra-5a for geb-bug-gnu-emacs@m.gmane.org; Tue, 30 Sep 2014 11:48:21 -0400 Original-Received: from eggs.gnu.org ([2001:4830:134:3::10]:56804) by lists.gnu.org with esmtp (Exim 4.71) (envelope-from ) id 1XYzes-0002RQ-T4 for bug-gnu-emacs@gnu.org; Tue, 30 Sep 2014 11:48:19 -0400 Original-Received: from Debian-exim by eggs.gnu.org with spam-scanned (Exim 4.71) (envelope-from ) id 1XYzek-0001rd-Ks for bug-gnu-emacs@gnu.org; Tue, 30 Sep 2014 11:48:10 -0400 Original-Received: from debbugs.gnu.org ([140.186.70.43]:36686) by eggs.gnu.org with esmtp (Exim 4.71) (envelope-from ) id 1XYzek-0001rW-Gx for bug-gnu-emacs@gnu.org; Tue, 30 Sep 2014 11:48:02 -0400 Original-Received: from Debian-debbugs by debbugs.gnu.org with local (Exim 4.80) (envelope-from ) id 1XYzej-0005PI-Q6 for bug-gnu-emacs@gnu.org; Tue, 30 Sep 2014 11:48:02 -0400 X-Loop: help-debbugs@gnu.org Resent-From: Stefan Monnier Original-Sender: "Debbugs-submit" Resent-CC: bug-gnu-emacs@gnu.org Resent-Date: Tue, 30 Sep 2014 15:48:01 +0000 Resent-Message-ID: Resent-Sender: help-debbugs@gnu.org X-GNU-PR-Message: followup 17625 X-GNU-PR-Package: emacs X-GNU-PR-Keywords: security Original-Received: via spool by 17625-submit@debbugs.gnu.org id=B17625.141209203720726 (code B ref 17625); Tue, 30 Sep 2014 15:48:01 +0000 Original-Received: (at 17625) by debbugs.gnu.org; 30 Sep 2014 15:47:17 +0000 Original-Received: from localhost ([127.0.0.1]:56483 helo=debbugs.gnu.org) by debbugs.gnu.org with esmtp (Exim 4.80) (envelope-from ) id 1XYze0-0005OE-MD for submit@debbugs.gnu.org; Tue, 30 Sep 2014 11:47:17 -0400 Original-Received: from mercure.iro.umontreal.ca ([132.204.24.67]:58358) by debbugs.gnu.org with esmtp (Exim 4.80) (envelope-from ) id 1XYzdy-0005O5-6V for 17625@debbugs.gnu.org; Tue, 30 Sep 2014 11:47:14 -0400 Original-Received: from hidalgo.iro.umontreal.ca (hidalgo.iro.umontreal.ca [132.204.27.50]) by mercure.iro.umontreal.ca (Postfix) with ESMTP id DCBCB84ED5; Tue, 30 Sep 2014 11:47:13 -0400 (EDT) Original-Received: from lechon.iro.umontreal.ca (lechon.iro.umontreal.ca [132.204.27.242]) by hidalgo.iro.umontreal.ca (Postfix) with ESMTP id B69531E5B94; Tue, 30 Sep 2014 11:46:46 -0400 (EDT) Original-Received: by lechon.iro.umontreal.ca (Postfix, from userid 20848) id 9C866B40C1; Tue, 30 Sep 2014 11:46:46 -0400 (EDT) In-Reply-To: <87h9zp5q1w.fsf@lifelogs.com> (Ted Zlatanov's message of "Tue, 30 Sep 2014 07:02:51 -0400") User-Agent: Gnus/5.13 (Gnus v5.13) Emacs/25.0.50 (gnu/linux) X-DIRO-MailScanner-Information: Please contact the ISP for more information X-DIRO-MailScanner: Found to be clean X-DIRO-MailScanner-SpamCheck: n'est pas un polluriel, SpamAssassin (score=-2.82, requis 5, autolearn=not spam, ALL_TRUSTED -2.82, MC_TSTLAST 0.00) X-DIRO-MailScanner-From: monnier@iro.umontreal.ca X-BeenThere: debbugs-submit@debbugs.gnu.org X-Mailman-Version: 2.1.15 Precedence: list X-detected-operating-system: by eggs.gnu.org: GNU/Linux 3.x X-Received-From: 140.186.70.43 X-BeenThere: bug-gnu-emacs@gnu.org List-Id: "Bug reports for GNU Emacs, the Swiss army knife of text editors" List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , Errors-To: bug-gnu-emacs-bounces+geb-bug-gnu-emacs=m.gmane.org@gnu.org Original-Sender: bug-gnu-emacs-bounces+geb-bug-gnu-emacs=m.gmane.org@gnu.org Xref: news.gmane.org gmane.emacs.bugs:93918 Archived-At: > I am, but looked in the trunk for this file. I didn't expect you'd put > the keyring only in the emacs-24 branch. Why keep it out of trunk? > Users there won't know to look in emacs-24. For those who haven't followed Emacs's development over the last 5 years: changes that should go into the release are made *only* to the release branch, which is then merged every once in a while into trunk. > They have to attempt an install. That's why I suggested the "Verify" button. A verify button would only make sense if we exposed the "download" and the "install" as two separate steps, so the user could then "verify" between those two steps. If we don't, then the user can "verify" with your button, get a "verification successful" and then go on and download an unsigned package (because the attacker just changed the file and removed the sig in the mean time). > The whole thing is hard to set up for a new user, Huh? It's completely transparent! Have you tried the `emacs-24' branch? > I'm trying to cover the case where the users wants to allow installing > unsigned packages, but still wants to verify an individual package's > signature beforehand. As the number of package archives grows, I think > that will be useful. A much better option, then, is to let package-check-signature take another value which causes the user to be prompted if the sig can't be checked. Stefan