From mboxrd@z Thu Jan  1 00:00:00 1970
Path: news.gmane.org!.POSTED!not-for-mail
From: Jimmy Yuen Ho Wong <wyuenho@gmail.com>
Newsgroups: gmane.emacs.devel
Subject: Re: A couple of questions and concerns about Emacs network security
Date: Sat, 7 Jul 2018 16:39:39 +0100
Message-ID: <CAKDRQS7P==i4i6yZm8CZ3uydXLL2SNRwt6GF5odryETiJpvdbw@mail.gmail.com>
References: <m236xe5vo2.fsf@mobilecat.lan>
	<eba313cf-104d-50dd-f1cd-4acb15864c0f@cs.ucla.edu>
	<m3a7rm2yrh.fsf@gnus.org> <m3602a2y7o.fsf@gnus.org>
	<c2d2b039-e012-f85f-bfbe-62f813bfc886@gmail.com>
	<m37empby3g.fsf@gnus.org>
	<20180705093346.071e6970@jabberwock.cb.piermont.com>
	<83wou9n66t.fsf@gnu.org>
	<20180705112920.076265d5@jabberwock.cb.piermont.com>
	<83r2khms1j.fsf@gnu.org>
	<20180705164500.0bde16cd@jabberwock.cb.piermont.com>
	<83bmbknafs.fsf@gnu.org> <E1fbZqU-00060y-Jp@fencepost.gnu.org>
	<20180707081833.37561702@jabberwock.cb.piermont.com>
	<83zhz3i3o3.fsf@gnu.org>
	<20180707094622.6eff25bf@jabberwock.cb.piermont.com>
	<CAKDRQS63FZKdU1HdC=M5UU58e1aVUXqzZTz24jRvArTF32RpCw@mail.gmail.com>
	<20180707111517.723e5cd9@jabberwock.cb.piermont.com>
NNTP-Posting-Host: blaine.gmane.org
Mime-Version: 1.0
Content-Type: text/plain; charset="UTF-8"
X-Trace: blaine.gmane.org 1530977889 17582 195.159.176.226 (7 Jul 2018 15:38:09 GMT)
X-Complaints-To: usenet@blaine.gmane.org
NNTP-Posting-Date: Sat, 7 Jul 2018 15:38:09 +0000 (UTC)
Cc: Lars Ingebrigtsen <larsi@gnus.org>, Eli Zaretskii <eliz@gnu.org>,
	Paul Eggert <eggert@cs.ucla.edu>, rms@gnu.org,
	Emacs-Devel devel <emacs-devel@gnu.org>
To: "Perry E. Metzger" <perry@piermont.com>
Original-X-From: emacs-devel-bounces+ged-emacs-devel=m.gmane.org@gnu.org Sat Jul 07 17:38:05 2018
Return-path: <emacs-devel-bounces+ged-emacs-devel=m.gmane.org@gnu.org>
Envelope-to: ged-emacs-devel@m.gmane.org
Original-Received: from lists.gnu.org ([208.118.235.17])
	by blaine.gmane.org with esmtp (Exim 4.84_2)
	(envelope-from <emacs-devel-bounces+ged-emacs-devel=m.gmane.org@gnu.org>)
	id 1fbpHe-0004QI-4P
	for ged-emacs-devel@m.gmane.org; Sat, 07 Jul 2018 17:38:02 +0200
Original-Received: from localhost ([::1]:34022 helo=lists.gnu.org)
	by lists.gnu.org with esmtp (Exim 4.71)
	(envelope-from <emacs-devel-bounces+ged-emacs-devel=m.gmane.org@gnu.org>)
	id 1fbpJl-0008Iy-44
	for ged-emacs-devel@m.gmane.org; Sat, 07 Jul 2018 11:40:13 -0400
Original-Received: from eggs.gnu.org ([2001:4830:134:3::10]:54291)
	by lists.gnu.org with esmtp (Exim 4.71)
	(envelope-from <wyuenho@gmail.com>) id 1fbpJe-0008IZ-FA
	for emacs-devel@gnu.org; Sat, 07 Jul 2018 11:40:07 -0400
Original-Received: from Debian-exim by eggs.gnu.org with spam-scanned (Exim 4.71)
	(envelope-from <wyuenho@gmail.com>) id 1fbpJc-00027c-VD
	for emacs-devel@gnu.org; Sat, 07 Jul 2018 11:40:06 -0400
Original-Received: from mail-it0-x22a.google.com ([2607:f8b0:4001:c0b::22a]:39524)
	by eggs.gnu.org with esmtps (TLS1.0:RSA_AES_128_CBC_SHA1:16)
	(Exim 4.71) (envelope-from <wyuenho@gmail.com>)
	id 1fbpJZ-00021R-LP; Sat, 07 Jul 2018 11:40:01 -0400
Original-Received: by mail-it0-x22a.google.com with SMTP id p185-v6so21118133itp.4;
	Sat, 07 Jul 2018 08:40:01 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20161025;
	h=mime-version:in-reply-to:references:from:date:message-id:subject:to
	:cc; bh=js7RMBGuwbO627nTzyxZkdpxSA8RtSIbvCqZTkCJOE4=;
	b=ZFCmXdpAtza/7+TtGf5oF4Eq1Eu1Tl2tXRWAx6sjE9T0ALvXjZ+DET03JC7flAOI3V
	K+nU/DryO8IGklt3AAUObzYa9pIvq/oHa0JkrrrWQeHMZSzCuMBW8DPOtce3iVLoZfGk
	7DG0IXYqZ5F6+YAnsSZXvtlFtRstZCkIWZScUwM9cDnMgHika4NhK/thTyfxqOBM6iz/
	fI/72xg8Pi4XPfZvFvg+jr4B6lXWvDpD5XxvyM7WJ2yaw7sAPPESoXUWOXBJt5+xP/HZ
	G47FUe3wKPLpQBy/Wjl029ZuaSHE5Bvu4z4m88LxYaxmN5kkhrLwPe689u64C2+Wwg0+
	ly3g==
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed;
	d=1e100.net; s=20161025;
	h=x-gm-message-state:mime-version:in-reply-to:references:from:date
	:message-id:subject:to:cc;
	bh=js7RMBGuwbO627nTzyxZkdpxSA8RtSIbvCqZTkCJOE4=;
	b=MJWqahz8Y3YuaYVfdmEaTvq5GVXNqdthK8Ay+erVy3M8+148T2MLH0C+eNhEPdd8H/
	cLikxz7BBhzMTLbx0LGebWlkvSH1RXYAwqWtoP53YWZMD189/ve0l0+bG19cG18iURCL
	ghiyHdzARR59Onn4zQpX0ZuYxXNUb/vL4wW/HuGQ6T9AFh0xqqGIOG+8sBBOXqRT83u2
	DYAZ2v3MxZZO97VjQvj4VBql2vg+CHHYwi/ZCequ0YtwGBTuWQq9h0ok2g9g4J8+/2DA
	NMTZtBEFvn9bNKRbLj8j0UQe7ZEZ/b6q+sDjVH84/A2MlWXf5XH7hKI5ClTIOQf+rO5R
	dEAg==
X-Gm-Message-State: APt69E2a30U4WBlR6WtYNZLqcu4PCddh1vjNjs7XitSBvDsoHGasvkxp
	K9+EKpVEO66i090IU3WTmg8RiAcGfFMtLmaARVA=
X-Google-Smtp-Source: AAOMgpdw19Vx7aqaEOFku4mj6QyhvRfNEIqj2eGFoXn1XCyiV+LrIWiEAQdm4J7MU5iZO46Zi4yvZiX52LuBlbiUs9k=
X-Received: by 2002:a24:46c5:: with SMTP id
	j188-v6mr11878752itb.105.1530978000863; 
	Sat, 07 Jul 2018 08:40:00 -0700 (PDT)
Original-Received: by 2002:a02:985d:0:0:0:0:0 with HTTP;
	Sat, 7 Jul 2018 08:39:39 -0700 (PDT)
In-Reply-To: <20180707111517.723e5cd9@jabberwock.cb.piermont.com>
X-detected-operating-system: by eggs.gnu.org: Genre and OS details not
	recognized.
X-Received-From: 2607:f8b0:4001:c0b::22a
X-BeenThere: emacs-devel@gnu.org
X-Mailman-Version: 2.1.21
Precedence: list
List-Id: "Emacs development discussions." <emacs-devel.gnu.org>
List-Unsubscribe: <https://lists.gnu.org/mailman/options/emacs-devel>,
	<mailto:emacs-devel-request@gnu.org?subject=unsubscribe>
List-Archive: <http://lists.gnu.org/archive/html/emacs-devel/>
List-Post: <mailto:emacs-devel@gnu.org>
List-Help: <mailto:emacs-devel-request@gnu.org?subject=help>
List-Subscribe: <https://lists.gnu.org/mailman/listinfo/emacs-devel>,
	<mailto:emacs-devel-request@gnu.org?subject=subscribe>
Errors-To: emacs-devel-bounces+ged-emacs-devel=m.gmane.org@gnu.org
Original-Sender: "Emacs-devel" <emacs-devel-bounces+ged-emacs-devel=m.gmane.org@gnu.org>
Xref: news.gmane.org gmane.emacs.devel:227066
Archived-At: <http://permalink.gmane.org/gmane.emacs.devel/227066>

Can you preempt me with an OCSP patch, or better yet, a CT patch
already... C hurts my head and I spend more time answering emails than
writing code this week...

Stop... both of you....

P.S. If it makes you feel any better, GnuTLS does checks OCSP stapling
automatically already, and I've already submitted a patch to do CRL,
not that IGTF's CRL is particularly good...

On Sat, Jul 7, 2018 at 4:15 PM, Perry E. Metzger <perry@piermont.com> wrote:
> On Sat, 7 Jul 2018 15:32:19 +0100 Jimmy Yuen Ho Wong
> <wyuenho@gmail.com> wrote:
>> I know Perry you probably want to copy what browsers do - basically
>> removing unsafe ciphers and only offer one security levels, and
>> perhaps drop support for GnuTLS version other than the most recent
>> stable version. I can tell you now that in practical terms, they
>> make very little difference. For Gmail, 85% outbound and 91%
>> inbound emails are secured with TLS[2].
>
> My main concern in the case of users reading their mail with Emacs is
> certificate forgery, and not the use of TLS itself. (The stats you
> are quoting are regardless for the use of TLS with SMTP, not with
> IMAP which is the relevant issue, and they don't tell us anything
> about the interception of mail by man-in-the-middle attacks against
> IMAP TLS connections.) Pinning (or later CT) is needed to prevent
> malefactors, including, lets be blunt, several major states, from
> using the equipment they've bought from Bluecoat and other vendors to
> intercept the TLS connections by using forged certificates. It's not a
> theoretical concern, the equipment to do this is deployed, and only
> CT and the rest will help.
>
> Downgrade attacks are also a concern of course.
>
>> For HTTP, most of the
>> checks I've implemented is already supported by a vast majority of
>> servers out there, and given that the time people spend on the web
>> vs the websites' Alexa rankings follows the Pareto distribution,
>> most of the time you won't even get a warning. No warning, no
>> decision to make.
>
> I'm also concerned about pinning or CT for things like
> mail.google.com and the like when they're accessed over HTTPS.
>
>> For the 20% of time you are not spending on Alexa top 20k, we can
>> infer from SSLLabs' SSLPulse data to get a sense of how dangerous
>> they are. SSLPulse tracks the Alexa top 150K websites, with the
>> exception of protocol downgrade defense, no other problems that I
>> check for exceed 5% on this list of servers. 5% of 20% is 1%. If
>> you only consider cipher suites independently, given that browsers
>> have removed a shit ton of unsafe cipher suites already, the chance
>> of getting an unsafe cipher suite from a handshake is very very
>> very small.
>
> The chance of getting an unsafe cipher suite in legitimate use is
> essentially zero. The chance of getting a downgrade attack is very
> very high because there are companies that sell hardware specifically
> to perform such attacks, and there's homemade equipment in deployed
> use by a number of state actors that have larger budgets and more
> custom interests.
>
>> The whole reason I'm working on fixing Emacs' network security is I
>> believe Emacs' esoteric user base is probably extreme outliers, and
>> Emacs' TLS defence is next to useless. I'm not working on this for
>> normal people here.
>
> So, I'm a security professional, partially responsible for the
> creation of some of the protocols in question, I use Emacs for
> purposes like reading email and the like, and I'm concerned that I
> want my security to be good and that the current mechanisms don't
> really give me what I need. And no, I don't want to be asked when I'm
> presented with a cert that Google specifically said isn't valid, I
> want it to be rejected so I won't accidentally say yes at 3am when
> I'm exhausted and not paying attention.
>
> Perry
> --
> Perry E. Metzger                perry@piermont.com