From mboxrd@z Thu Jan 1 00:00:00 1970 Path: news.gmane.org!not-for-mail From: Ted Zlatanov Newsgroups: gmane.emacs.devel,gmane.emacs.gnus.general Subject: Re: authinfo gnutls netrc.el auth-sources & smtpmail-starttls-credentials Date: Wed, 10 Jun 2009 16:18:38 -0500 Organization: =?utf-8?B?0KLQtdC+0LTQvtGAINCX0LvQsNGC0LDQvdC+0LI=?= @ Cienfuegos Message-ID: <87prdblrdd.fsf@lifelogs.com> References: NNTP-Posting-Host: lo.gmane.org Mime-Version: 1.0 Content-Type: text/plain; charset=us-ascii X-Trace: ger.gmane.org 1244668748 9822 80.91.229.12 (10 Jun 2009 21:19:08 GMT) X-Complaints-To: usenet@ger.gmane.org NNTP-Posting-Date: Wed, 10 Jun 2009 21:19:08 +0000 (UTC) Cc: Ding Mailing List To: emacs-devel@gnu.org Original-X-From: emacs-devel-bounces+ged-emacs-devel=m.gmane.org@gnu.org Wed Jun 10 23:19:05 2009 Return-path: Envelope-to: ged-emacs-devel@m.gmane.org Original-Received: from lists.gnu.org ([199.232.76.165]) by lo.gmane.org with esmtp (Exim 4.50) id 1MEVCI-0006JV-FL for ged-emacs-devel@m.gmane.org; Wed, 10 Jun 2009 23:19:02 +0200 Original-Received: from localhost ([127.0.0.1]:40873 helo=lists.gnu.org) by lists.gnu.org with esmtp (Exim 4.43) id 1MEVCH-0000bb-Nb for ged-emacs-devel@m.gmane.org; Wed, 10 Jun 2009 17:19:01 -0400 Original-Received: from mailman by lists.gnu.org with tmda-scanned (Exim 4.43) id 1MEVCC-0000bJ-FP for emacs-devel@gnu.org; Wed, 10 Jun 2009 17:18:56 -0400 Original-Received: from exim by lists.gnu.org with spam-scanned (Exim 4.43) id 1MEVC8-0000an-Tc for emacs-devel@gnu.org; Wed, 10 Jun 2009 17:18:56 -0400 Original-Received: from [199.232.76.173] (port=47184 helo=monty-python.gnu.org) by lists.gnu.org with esmtp (Exim 4.43) id 1MEVC8-0000ac-Jr for emacs-devel@gnu.org; Wed, 10 Jun 2009 17:18:52 -0400 Original-Received: from main.gmane.org ([80.91.229.2]:56077 helo=ciao.gmane.org) by monty-python.gnu.org with esmtps (TLS-1.0:RSA_AES_256_CBC_SHA1:32) (Exim 4.60) (envelope-from ) id 1MEVC8-00012G-7V for emacs-devel@gnu.org; Wed, 10 Jun 2009 17:18:52 -0400 Original-Received: from list by ciao.gmane.org with local (Exim 4.43) id 1MEVC5-0001C0-3k for emacs-devel@gnu.org; Wed, 10 Jun 2009 21:18:49 +0000 Original-Received: from 38.98.147.130 ([38.98.147.130]) by main.gmane.org with esmtp (Gmexim 0.1 (Debian)) id 1AlnuQ-0007hv-00 for ; Wed, 10 Jun 2009 21:18:49 +0000 Original-Received: from tzz by 38.98.147.130 with local (Gmexim 0.1 (Debian)) id 1AlnuQ-0007hv-00 for ; Wed, 10 Jun 2009 21:18:49 +0000 X-Injected-Via-Gmane: http://gmane.org/ Original-Lines: 48 Original-X-Complaints-To: usenet@ger.gmane.org X-Gmane-NNTP-Posting-Host: 38.98.147.130 X-Face: bd.DQ~'29fIs`T_%O%C\g%6jW)yi[zuz6; d4V0`@y-~$#3P_Ng{@m+e4o<4P'#(_GJQ%TT= D}[Ep*b!\e,fBZ'j_+#"Ps?s2!4H2-Y"sx" User-Agent: Gnus/5.110011 (No Gnus v0.11) Emacs/23.0.94 (gnu/linux) Cancel-Lock: sha1:mmvqiX1qR1PS9oc9/u6CB5hY3cs= X-detected-operating-system: by monty-python.gnu.org: GNU/Linux 2.6, seldom 2.4 (older, 4) X-BeenThere: emacs-devel@gnu.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: "Emacs development discussions." List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , Original-Sender: emacs-devel-bounces+ged-emacs-devel=m.gmane.org@gnu.org Errors-To: emacs-devel-bounces+ged-emacs-devel=m.gmane.org@gnu.org X-Spam-Report: 5.1 points; * 0.0 RCVD_BY_IP Received by mail server with no name * -0.0 SPF_HELO_PASS SPF: HELO matches SPF record * 1.1 SUBJ_HAS_UNIQ_ID Subject contains a unique ID * -0.0 SPF_PASS SPF: sender matches SPF record * 4.0 RCVD_NUMERIC_HELO Received: contains an IP address used for HELO Xref: news.gmane.org gmane.emacs.devel:111418 gmane.emacs.gnus.general:68610 Archived-At: On Tue, 9 Jun 2009 23:49:41 -0400 MON KEY wrote: MK> use of .authinfo.gpg implies auth-sources.el (or will soon) MK> auth-sources wants netrc.el per `auth-source-user-or-password' MK> netrc.el defines a var `netrc-services' that is hard bound to "/etc/services" MK> How is this going to remain secure/stable/reliable across platforms - MK> esp. going forward in lieu of emerging and recent new functionality MK> with auth-sources, epa, epg? MK> If netrc.el wants to hardwire the `netrc-services-file' he should be MK> mindful that not all systems have this path available - maybe a MK> defcustom is in order here? It makes sense to bundle some default service definitions with Emacs, but allow overriding and lookups in external resources (files, etc.) as well. There's always the option of specifying the port as a number. Also there are packages which have their own ideas about service ports, e.g. from imap.el: ;; Internal constants. Change these and die. (defconst imap-default-port 143) (defconst imap-default-ssl-port 993) (defconst imap-default-tls-port 993) or tramp.el: ("ssh" (tramp-login-program "ssh") ... (tramp-default-port 22)) The place to put the service port definitions and API should probably be a new .el file in Emacs, not netrc.el or auth-sources.el. Then Emacs packages can migrate to using the new API. One of the Emacs maintainers should give an opinion here, I don't have a strong one. MK> It doesn't look like this oversight can pose an immediate problem MK> because where the `/etc/services' is missing netrc.el just ignores the MK> void... and quietly proceeds - still... is that a _good_ thing? Yes, it lets people get stuff done. It's not a security risk and does not behave in an unexpected way. It can be augmented but the fundamental principle is sound: use the host OS's idea of service ports if it's available. Ted