From mboxrd@z Thu Jan 1 00:00:00 1970 Path: news.gmane.org!not-for-mail From: "Stephen J. Turnbull" Newsgroups: gmane.emacs.devel Subject: Re: ELPA security Date: Sat, 22 Dec 2012 21:34:06 +0900 Message-ID: <87d2y2w9j5.fsf@uwakimon.sk.tsukuba.ac.jp> References: <8738zf70ep.fsf@riseup.net> <871uejlbm1.fsf@lifelogs.com> <87obhmzl2f.fsf@bzg.ath.cx> <20121222141742.7494b429fe36e5ccef50cf6f@gmail.com> NNTP-Posting-Host: plane.gmane.org Mime-Version: 1.0 Content-Type: text/plain; charset=utf-8 X-Trace: ger.gmane.org 1356179676 6286 80.91.229.3 (22 Dec 2012 12:34:36 GMT) X-Complaints-To: usenet@ger.gmane.org NNTP-Posting-Date: Sat, 22 Dec 2012 12:34:36 +0000 (UTC) Cc: Bastien , emacs-devel@gnu.org To: Xue Fuqiao Original-X-From: emacs-devel-bounces+ged-emacs-devel=m.gmane.org@gnu.org Sat Dec 22 13:34:51 2012 Return-path: Envelope-to: ged-emacs-devel@m.gmane.org Original-Received: from lists.gnu.org ([208.118.235.17]) by plane.gmane.org with esmtp (Exim 4.69) (envelope-from ) id 1TmOHt-0001cH-FP for ged-emacs-devel@m.gmane.org; Sat, 22 Dec 2012 13:34:45 +0100 Original-Received: from localhost ([::1]:57177 helo=lists.gnu.org) by lists.gnu.org with esmtp (Exim 4.71) (envelope-from ) id 1TmOHf-0006Bg-DY for ged-emacs-devel@m.gmane.org; Sat, 22 Dec 2012 07:34:31 -0500 Original-Received: from eggs.gnu.org ([208.118.235.92]:49656) by lists.gnu.org with esmtp (Exim 4.71) (envelope-from ) id 1TmOHX-0006BK-TU for emacs-devel@gnu.org; Sat, 22 Dec 2012 07:34:29 -0500 Original-Received: from Debian-exim by eggs.gnu.org with spam-scanned (Exim 4.71) (envelope-from ) id 1TmOHS-0005JS-PA for emacs-devel@gnu.org; Sat, 22 Dec 2012 07:34:23 -0500 Original-Received: from mgmt2.sk.tsukuba.ac.jp ([130.158.97.224]:59295) by eggs.gnu.org with esmtp (Exim 4.71) (envelope-from ) id 1TmOHJ-0005I2-PH; Sat, 22 Dec 2012 07:34:10 -0500 Original-Received: from uwakimon.sk.tsukuba.ac.jp (uwakimon.sk.tsukuba.ac.jp [130.158.99.156]) by mgmt2.sk.tsukuba.ac.jp (Postfix) with ESMTP id 163339708C6; Sat, 22 Dec 2012 21:34:07 +0900 (JST) Original-Received: by uwakimon.sk.tsukuba.ac.jp (Postfix, from userid 1000) id D2FCF1A323D; Sat, 22 Dec 2012 21:34:06 +0900 (JST) In-Reply-To: <20121222141742.7494b429fe36e5ccef50cf6f@gmail.com> X-Mailer: VM undefined under 21.5 (beta32) "habanero" b0d40183ac79 XEmacs Lucid (x86_64-unknown-linux) X-detected-operating-system: by eggs.gnu.org: GNU/Linux 2.6.x X-Received-From: 130.158.97.224 X-BeenThere: emacs-devel@gnu.org X-Mailman-Version: 2.1.14 Precedence: list List-Id: "Emacs development discussions." List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , Errors-To: emacs-devel-bounces+ged-emacs-devel=m.gmane.org@gnu.org Original-Sender: emacs-devel-bounces+ged-emacs-devel=m.gmane.org@gnu.org Xref: news.gmane.org gmane.emacs.devel:155758 Archived-At: Xue Fuqiao writes: > On Sat, 22 Dec 2012 06:07:19 +0100 > Bastien wrote: > > > What about simply distributing, within GNU Emacs the > > list of md5 hashes of valid(ated) packages? Doesn't solve any problems that I can see. You'll still need to distribute the hashes for newly added or updated packages somehow. People aren't going to reinstall Emacs just because of a package update they might like to try, and even if they would, the burden on the maintainers would be substantial. > It's quite easy and straightforward. And maybe functions like > SHA-3 or MD6 are even better. Get advice from someone who knows what they're talking about (which isn't me, but I do know how much I don't know ;-). As far as I can tell, MD5 is clearly out of the question any more for security purposes. A hash believed secure for the foreseeable future is not a huge computational burden in this application. The only real question is whether it's installed on the users' systems or not.