From mboxrd@z Thu Jan 1 00:00:00 1970 Path: news.gmane.org!not-for-mail From: Daniel Colascione Newsgroups: gmane.emacs.devel Subject: Re: Emacs RPC security Date: Mon, 25 Apr 2011 11:17:02 -0700 Message-ID: <4DB5BA9E.5060309@gmail.com> References: <87d3kal0za.fsf@lifelogs.com> <874o5mky4o.fsf@lifelogs.com> NNTP-Posting-Host: lo.gmane.org Mime-Version: 1.0 Content-Type: multipart/signed; micalg=pgp-sha1; protocol="application/pgp-signature"; boundary="------------enig651E1C1DE309456472B9772D" X-Trace: dough.gmane.org 1303755440 21954 80.91.229.12 (25 Apr 2011 18:17:20 GMT) X-Complaints-To: usenet@dough.gmane.org NNTP-Posting-Date: Mon, 25 Apr 2011 18:17:20 +0000 (UTC) Cc: emacs-devel@gnu.org To: Ted Zlatanov Original-X-From: emacs-devel-bounces+ged-emacs-devel=m.gmane.org@gnu.org Mon Apr 25 20:17:14 2011 Return-path: Envelope-to: ged-emacs-devel@m.gmane.org Original-Received: from lists.gnu.org ([140.186.70.17]) by lo.gmane.org with esmtp (Exim 4.69) (envelope-from ) id 1QEQLQ-00034I-Le for ged-emacs-devel@m.gmane.org; Mon, 25 Apr 2011 20:17:12 +0200 Original-Received: from localhost ([::1]:57039 helo=lists2.gnu.org) by lists.gnu.org with esmtp (Exim 4.71) (envelope-from ) id 1QEQLQ-0006Q7-5j for ged-emacs-devel@m.gmane.org; Mon, 25 Apr 2011 14:17:12 -0400 Original-Received: from eggs.gnu.org ([140.186.70.92]:39911) by lists.gnu.org with esmtp (Exim 4.71) (envelope-from ) id 1QEQLN-0006Q0-AB for emacs-devel@gnu.org; Mon, 25 Apr 2011 14:17:11 -0400 Original-Received: from Debian-exim by eggs.gnu.org with spam-scanned (Exim 4.71) (envelope-from ) id 1QEQLM-00058e-78 for emacs-devel@gnu.org; Mon, 25 Apr 2011 14:17:09 -0400 Original-Received: from mail-pv0-f169.google.com ([74.125.83.169]:41757) by eggs.gnu.org with esmtp (Exim 4.71) (envelope-from ) id 1QEQLL-00058G-Vs for emacs-devel@gnu.org; Mon, 25 Apr 2011 14:17:08 -0400 Original-Received: by pvc12 with SMTP id 12so1652997pvc.0 for ; Mon, 25 Apr 2011 11:17:06 -0700 (PDT) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=gamma; h=domainkey-signature:message-id:date:from:user-agent:mime-version:to :cc:subject:references:in-reply-to:x-enigmail-version:content-type; bh=KS/ev0HtsJoH2w+IYL8pPpV8YRSkyppxAhmmFc3gdeI=; b=SZvsrJui7mTBqnfkO6sdfpQo0o6x+1c+xhwZOoCPuhu7AQ4sYwvklIqq6q2uNmn1r5 Fy//CDRC17RS21zNolAHYILEoKp8U4zY48bBDNiptZE3+ozc1dmnE8bRtywMdwz3SMoJ hPvBJvPX9C5Wet7OqVZB+sPsEr65OMZiRb4hY= DomainKey-Signature: a=rsa-sha1; c=nofws; d=gmail.com; s=gamma; h=message-id:date:from:user-agent:mime-version:to:cc:subject :references:in-reply-to:x-enigmail-version:content-type; b=Ki5cgP+VqHty+pCV5I0LhLZgIpS05lzncWuTsdUn1huXD9amGuC2RnmYmdmwjY4TUb 9LVkMMmZ9HtTlkQ4v505JSWn0hfAHlk0ZOyipUBLh2AZ77Iq6x5r0ePCHDJ/BYVprT5I T6p4NBbs+fhxCqLOxR4XpMgST+b/tOjdoC2Ik= Original-Received: by 10.68.2.8 with SMTP id 8mr6959896pbq.386.1303755426763; Mon, 25 Apr 2011 11:17:06 -0700 (PDT) Original-Received: from [192.168.1.2] (c-67-183-23-114.hsd1.wa.comcast.net [67.183.23.114]) by mx.google.com with ESMTPS id o3sm1170689pbt.61.2011.04.25.11.17.04 (version=TLSv1/SSLv3 cipher=OTHER); Mon, 25 Apr 2011 11:17:05 -0700 (PDT) User-Agent: Mozilla/5.0 (Macintosh; U; Intel Mac OS X 10.6; en-US; rv:1.9.2.15) Gecko/20110303 Thunderbird/3.1.9 In-Reply-To: <874o5mky4o.fsf@lifelogs.com> X-Enigmail-Version: 1.1.1 X-detected-operating-system: by eggs.gnu.org: GNU/Linux 2.6 (newer, 2) X-Received-From: 74.125.83.169 X-BeenThere: emacs-devel@gnu.org X-Mailman-Version: 2.1.14 Precedence: list List-Id: "Emacs development discussions." List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , Errors-To: emacs-devel-bounces+ged-emacs-devel=m.gmane.org@gnu.org Original-Sender: emacs-devel-bounces+ged-emacs-devel=m.gmane.org@gnu.org Xref: news.gmane.org gmane.emacs.devel:138752 Archived-At: This is an OpenPGP/MIME signed message (RFC 2440 and 3156) --------------enig651E1C1DE309456472B9772D Content-Type: text/plain; charset=UTF-8 Content-Transfer-Encoding: quoted-printable On 4/25/11 11:02 AM, Ted Zlatanov wrote: > On Mon, 25 Apr 2011 14:35:49 -0300 Stefan Monnier wrote:=20 > SM> Ted wrote: >>> 1) authentication: the server should be able to verify the client's >>> identity and the client should be able to verify the server's identit= y. >>> This can be accomplished with SSL certificates and GnuTLS or by signi= ng >>> each message. >=20 > SM> Using GnuTLS for the TCP connections could be a good idea as well: > SM> patches welcome. >=20 > I will put server GnuTLS support in Emacs on my TODO list, but it will > take a while. I hope you consider it important. >=20 >>> 2) authorization: the server should be able to associate each client >>> identity with only certain functions it can invoke directly. >=20 > SM> When such a need will arise, we will think about it. In all the ca= ses > SM> I've seen until now, the Emacs server is only used by the same user= as > SM> the client, so there's not much point making the security structure= > SM> so complicated, right now. >=20 > Of course, since the security is so weak right now, no one is using it > outside a limited one-user so you haven't seen any unusual cases. I > would use it personally as a remote password server so all my > auth-source data doesn't live on all the machines I use. I would also > use it to implement a remote synchronization facility for Gnus and BBDB= =2E That's a fine goal, but you don't need to implement the requisite security in Emacs proper. stunnel will give you a secure channel and, with client certificates, can authenticate both parties. I'd prefer not to have a GnuTLS server in Emacs right now. --------------enig651E1C1DE309456472B9772D Content-Type: application/pgp-signature; name="signature.asc" Content-Description: OpenPGP digital signature Content-Disposition: attachment; filename="signature.asc" -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.11 (Darwin) iEYEARECAAYFAk21up8ACgkQ17c2LVA10VuvVQCg66nNQ36vaHMTrciAp2m7RXY2 +D8AoLuQ49Np63mugXw3eJP6hwk9XkPY =F29s -----END PGP SIGNATURE----- --------------enig651E1C1DE309456472B9772D--