From mboxrd@z Thu Jan 1 00:00:00 1970 Path: news.gmane.org!not-for-mail From: Kurt Roeckx Newsgroups: gmane.emacs.devel Subject: Re: Bug#766395: emacs/gnus: Uses s_client to for SSL. Date: Thu, 23 Oct 2014 21:03:12 +0200 Message-ID: <20141023190312.GA14938@roeckx.be> References: <20141022193441.GA11872@roeckx.be> <87zjcnj2k6.fsf@trouble.defaultvalue.org> <87mw8mzmxj.fsf@mid.deneb.enyo.de> <20141023143702.3897e618@jabberwock.cb.piermont.com> <8761fazkx7.fsf@mid.deneb.enyo.de> <20141023145721.12ed0820@jabberwock.cb.piermont.com> NNTP-Posting-Host: plane.gmane.org Mime-Version: 1.0 Content-Type: text/plain; charset=us-ascii X-Trace: ger.gmane.org 1414092092 29326 80.91.229.3 (23 Oct 2014 19:21:32 GMT) X-Complaints-To: usenet@ger.gmane.org NNTP-Posting-Date: Thu, 23 Oct 2014 19:21:32 +0000 (UTC) Cc: Florian Weimer , rms@gnu.org, Rob Browning , emacs-devel@gnu.org To: "Perry E. Metzger" Original-X-From: emacs-devel-bounces+ged-emacs-devel=m.gmane.org@gnu.org Thu Oct 23 21:21:27 2014 Return-path: Envelope-to: ged-emacs-devel@m.gmane.org Original-Received: from lists.gnu.org ([208.118.235.17]) by plane.gmane.org with esmtp (Exim 4.69) (envelope-from ) id 1XhNws-0001j4-Sp for ged-emacs-devel@m.gmane.org; Thu, 23 Oct 2014 21:21:27 +0200 Original-Received: from localhost ([::1]:43117 helo=lists.gnu.org) by lists.gnu.org with esmtp (Exim 4.71) (envelope-from ) id 1XhNws-0002Cp-EJ for ged-emacs-devel@m.gmane.org; Thu, 23 Oct 2014 15:21:26 -0400 Original-Received: from eggs.gnu.org ([2001:4830:134:3::10]:33536) by lists.gnu.org with esmtp (Exim 4.71) (envelope-from ) id 1XhNfQ-0006O0-0f for emacs-devel@gnu.org; Thu, 23 Oct 2014 15:03:28 -0400 Original-Received: from Debian-exim by eggs.gnu.org with spam-scanned (Exim 4.71) (envelope-from ) id 1XhNfH-0002B9-1m for emacs-devel@gnu.org; Thu, 23 Oct 2014 15:03:23 -0400 Original-Received: from defiant.e-webshops.eu ([82.146.122.140]:54955) by eggs.gnu.org with esmtp (Exim 4.71) (envelope-from ) id 1XhNfG-0002AE-Si; Thu, 23 Oct 2014 15:03:14 -0400 Original-Received: from intrepid.roeckx.be (localhost [127.0.0.1]) by defiant.e-webshops.eu (Postfix) with ESMTP id A1C9A1C20F0; Thu, 23 Oct 2014 21:03:12 +0200 (CEST) Original-Received: by intrepid.roeckx.be (Postfix, from userid 1000) id 8380A1FE01CC; Thu, 23 Oct 2014 21:03:12 +0200 (CEST) Content-Disposition: inline In-Reply-To: <20141023145721.12ed0820@jabberwock.cb.piermont.com> User-Agent: Mutt/1.5.23 (2014-03-12) X-detected-operating-system: by eggs.gnu.org: GNU/Linux 3.x X-Received-From: 82.146.122.140 X-Mailman-Approved-At: Thu, 23 Oct 2014 15:21:02 -0400 X-BeenThere: emacs-devel@gnu.org X-Mailman-Version: 2.1.14 Precedence: list List-Id: "Emacs development discussions." List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , Errors-To: emacs-devel-bounces+ged-emacs-devel=m.gmane.org@gnu.org Original-Sender: emacs-devel-bounces+ged-emacs-devel=m.gmane.org@gnu.org Xref: news.gmane.org gmane.emacs.devel:175753 Archived-At: On Thu, Oct 23, 2014 at 02:57:21PM -0400, Perry E. Metzger wrote: > On Thu, 23 Oct 2014 20:43:32 +0200 Florian Weimer > > Keep in mind that TLS 1.0 basically has the same problem as SSL 3.0, > > and support for protocols beyond TLS 1.0 is not actually widespread. > > Connections to most of the top sites are TLS 1.2 at this point. > Google is TLS 1.2. Facebook is TLS 1.2. Amazon is TLS 1.2. Apple is > TLS 1.2. I could go on and on. > > All are using AES at this point and not RC4 as well. I think this is really getting off topic. But if you want to see real stats look at things like: https://www.trustworthyinternet.org/ssl-pulse/ https://lists.fedoraproject.org/pipermail/security/2014-September/001976.html Kurt