From mboxrd@z Thu Jan  1 00:00:00 1970
Path: news.gmane.org!not-for-mail
From: Tassilo Horn <tsdh@gnu.org>
Newsgroups: gmane.emacs.devel
Subject: Re: Network security manager
Date: Tue, 18 Nov 2014 16:03:02 +0100
Message-ID: <87d28kh7q1.fsf@thinkpad-t440p.tsdh.org>
References: <m3zjbqouyk.fsf@stories.gnus.org>
	<jwvk32uq67g.fsf-monnier+emacs@gnu.org>
	<85a93pj1n5.fsf@stephe-leake.org> <m3oas5am0b.fsf@stories.gnus.org>
	<CAG-q9=Z7_T1-AYz=pYjvJeg1BM1i9VjYAu76V_pD5F7MpR8a2A@mail.gmail.com>
	<m3bno5igmh.fsf@stories.gnus.org> <m3fvdhgzcl.fsf@stories.gnus.org>
	<m3ppck7eq9.fsf@stories.gnus.org>
NNTP-Posting-Host: plane.gmane.org
Mime-Version: 1.0
Content-Type: text/plain
X-Trace: ger.gmane.org 1416323015 829 80.91.229.3 (18 Nov 2014 15:03:35 GMT)
X-Complaints-To: usenet@ger.gmane.org
NNTP-Posting-Date: Tue, 18 Nov 2014 15:03:35 +0000 (UTC)
Cc: Emacs development discussions <emacs-devel@gnu.org>
To: Lars Magne Ingebrigtsen <larsi@gnus.org>
Original-X-From: emacs-devel-bounces+ged-emacs-devel=m.gmane.org@gnu.org Tue Nov 18 16:03:28 2014
Return-path: <emacs-devel-bounces+ged-emacs-devel=m.gmane.org@gnu.org>
Envelope-to: ged-emacs-devel@m.gmane.org
Original-Received: from lists.gnu.org ([208.118.235.17])
	by plane.gmane.org with esmtp (Exim 4.69)
	(envelope-from <emacs-devel-bounces+ged-emacs-devel=m.gmane.org@gnu.org>)
	id 1XqkJU-0000aU-AR
	for ged-emacs-devel@m.gmane.org; Tue, 18 Nov 2014 16:03:28 +0100
Original-Received: from localhost ([::1]:53681 helo=lists.gnu.org)
	by lists.gnu.org with esmtp (Exim 4.71)
	(envelope-from <emacs-devel-bounces+ged-emacs-devel=m.gmane.org@gnu.org>)
	id 1XqkJT-00010T-Vm
	for ged-emacs-devel@m.gmane.org; Tue, 18 Nov 2014 10:03:27 -0500
Original-Received: from eggs.gnu.org ([2001:4830:134:3::10]:48515)
	by lists.gnu.org with esmtp (Exim 4.71)
	(envelope-from <tsdh@gnu.org>) id 1XqkJC-0000yo-SQ
	for emacs-devel@gnu.org; Tue, 18 Nov 2014 10:03:16 -0500
Original-Received: from Debian-exim by eggs.gnu.org with spam-scanned (Exim 4.71)
	(envelope-from <tsdh@gnu.org>) id 1XqkJ6-0004eB-S3
	for emacs-devel@gnu.org; Tue, 18 Nov 2014 10:03:10 -0500
Original-Received: from deliver.uni-koblenz.de ([141.26.64.15]:34795)
	by eggs.gnu.org with esmtp (Exim 4.71) (envelope-from <tsdh@gnu.org>)
	id 1XqkJ6-0004dy-N1
	for emacs-devel@gnu.org; Tue, 18 Nov 2014 10:03:04 -0500
Original-Received: from localhost (localhost [127.0.0.1])
	by deliver.uni-koblenz.de (Postfix) with ESMTP id BC8083D600C;
	Tue, 18 Nov 2014 16:03:03 +0100 (CET)
X-Virus-Scanned: amavisd-new at uni-koblenz.de
Original-Received: from deliver.uni-koblenz.de ([127.0.0.1])
	by localhost (deliver.uni-koblenz.de [127.0.0.1]) (amavisd-new,
	port 10024)
	with ESMTP id x0G8sVwCsbJ7; Tue, 18 Nov 2014 16:03:03 +0100 (CET)
X-CHKRCPT: Envelopesender noch tsdh@gnu.org
Original-Received: from thinkpad-t440p.tsdh.org (dhcp194.uni-koblenz.de [141.26.71.194])
	(using TLSv1 with cipher AES128-SHA (128/128 bits))
	(No client certificate requested)
	by deliver.uni-koblenz.de (Postfix) with ESMTPSA id 62CA23D600A;
	Tue, 18 Nov 2014 16:03:03 +0100 (CET)
Mail-Followup-To: Lars Magne Ingebrigtsen <larsi@gnus.org>, Emacs development
	discussions <emacs-devel@gnu.org>
In-Reply-To: <m3ppck7eq9.fsf@stories.gnus.org> (Lars Magne Ingebrigtsen's
	message of "Tue, 18 Nov 2014 15:41:50 +0100")
User-Agent: Gnus/5.130012 (Ma Gnus v0.12) Emacs/25.0.50 (gnu/linux)
X-detected-operating-system: by eggs.gnu.org: GNU/Linux 2.6.x
X-Received-From: 141.26.64.15
X-BeenThere: emacs-devel@gnu.org
X-Mailman-Version: 2.1.14
Precedence: list
List-Id: "Emacs development discussions." <emacs-devel.gnu.org>
List-Unsubscribe: <https://lists.gnu.org/mailman/options/emacs-devel>,
	<mailto:emacs-devel-request@gnu.org?subject=unsubscribe>
List-Archive: <http://lists.gnu.org/archive/html/emacs-devel>
List-Post: <mailto:emacs-devel@gnu.org>
List-Help: <mailto:emacs-devel-request@gnu.org?subject=help>
List-Subscribe: <https://lists.gnu.org/mailman/listinfo/emacs-devel>,
	<mailto:emacs-devel-request@gnu.org?subject=subscribe>
Errors-To: emacs-devel-bounces+ged-emacs-devel=m.gmane.org@gnu.org
Original-Sender: emacs-devel-bounces+ged-emacs-devel=m.gmane.org@gnu.org
Xref: news.gmane.org gmane.emacs.devel:177554
Archived-At: <http://permalink.gmane.org/gmane.emacs.devel/177554>

Lars Magne Ingebrigtsen <larsi@gnus.org> writes:

> The related thing I was also going to implement is the "shouldn't this
> connection be encrypted?" thing previously discussed.  That is, if
> you're talking to an IMAP server, you most likely want that connection
> to be encrypted, and if not, Emacs should tell you that it isn't.
>
> This is trivial to implement in the NSM, but what should the defaults
> be?
>
> IMAP, POP3: I think most users would want to be warned here
> SMTP, IRC: I don't think anybody cares
> NNTP: They might care if they're sending a password

Why do you think that sending passwords unencrypted with SMTP is ok but
with NNTP it's not ok?

So IMHO, I would always expect a warning.  For all those protocols
there's usually an encrypted version (possibly on another port), and in
general everybody should use that.  But of course it's possible that,
say, irc.foobar.org doesn't support encrypted connections, and if so,
I'd prefer to get a warning only the first time I connect.  Maybe some
query like with file-local variables and eval forms would be good where
you can say "No (don't connect)", "Yes (only this time)", "Yes (only
this emacs session)", and "Yes (always)".

> Uhm...  is that all the protocols?  I feel I'm forgetting one...

FTP maybe?

Bye,
Tassilo