From mboxrd@z Thu Jan  1 00:00:00 1970
Path: news.gmane.org!not-for-mail
From: Lars Magne Ingebrigtsen <larsi@gnus.org>
Newsgroups: gmane.emacs.devel
Subject: Re: Emacs RPC security
Date: Mon, 02 May 2011 00:02:47 +0200
Organization: Programmerer Ingebrigtsen
Message-ID: <m3bozm9j08.fsf@quimbies.gnus.org>
References: <m3ipu4u7bv.fsf@quimbies.gnus.org> <87d3kal0za.fsf@lifelogs.com>
	<jwvfwp6xmr0.fsf-monnier+emacs@gnu.org> <874o5mky4o.fsf@lifelogs.com>
	<m3oc3mb68s.fsf@quimbies.gnus.org>
NNTP-Posting-Host: lo.gmane.org
Mime-Version: 1.0
Content-Type: text/plain
X-Trace: dough.gmane.org 1304287394 25544 80.91.229.12 (1 May 2011 22:03:14 GMT)
X-Complaints-To: usenet@dough.gmane.org
NNTP-Posting-Date: Sun, 1 May 2011 22:03:14 +0000 (UTC)
To: emacs-devel@gnu.org
Original-X-From: emacs-devel-bounces+ged-emacs-devel=m.gmane.org@gnu.org Mon May 02 00:03:11 2011
Return-path: <emacs-devel-bounces+ged-emacs-devel=m.gmane.org@gnu.org>
Envelope-to: ged-emacs-devel@m.gmane.org
Original-Received: from lists.gnu.org ([140.186.70.17])
	by lo.gmane.org with esmtp (Exim 4.69)
	(envelope-from <emacs-devel-bounces+ged-emacs-devel=m.gmane.org@gnu.org>)
	id 1QGejO-0002ag-N6
	for ged-emacs-devel@m.gmane.org; Mon, 02 May 2011 00:03:10 +0200
Original-Received: from localhost ([::1]:45291 helo=lists.gnu.org)
	by lists.gnu.org with esmtp (Exim 4.71)
	(envelope-from <emacs-devel-bounces+ged-emacs-devel=m.gmane.org@gnu.org>)
	id 1QGejO-0000hY-2A
	for ged-emacs-devel@m.gmane.org; Sun, 01 May 2011 18:03:10 -0400
Original-Received: from eggs.gnu.org ([140.186.70.92]:60424)
	by lists.gnu.org with esmtp (Exim 4.71)
	(envelope-from <ged-emacs-devel@m.gmane.org>) id 1QGejJ-0000hE-BI
	for emacs-devel@gnu.org; Sun, 01 May 2011 18:03:08 -0400
Original-Received: from Debian-exim by eggs.gnu.org with spam-scanned (Exim 4.71)
	(envelope-from <ged-emacs-devel@m.gmane.org>) id 1QGejF-0004vE-EB
	for emacs-devel@gnu.org; Sun, 01 May 2011 18:03:05 -0400
Original-Received: from lo.gmane.org ([80.91.229.12]:60588)
	by eggs.gnu.org with esmtp (Exim 4.71)
	(envelope-from <ged-emacs-devel@m.gmane.org>) id 1QGejE-0004v6-VZ
	for emacs-devel@gnu.org; Sun, 01 May 2011 18:03:01 -0400
Original-Received: from list by lo.gmane.org with local (Exim 4.69)
	(envelope-from <ged-emacs-devel@m.gmane.org>) id 1QGejD-0002Ui-MO
	for emacs-devel@gnu.org; Mon, 02 May 2011 00:02:59 +0200
Original-Received: from cm-84.215.51.58.getinternet.no ([84.215.51.58])
	by main.gmane.org with esmtp (Gmexim 0.1 (Debian))
	id 1AlnuQ-0007hv-00
	for <emacs-devel@gnu.org>; Mon, 02 May 2011 00:02:59 +0200
Original-Received: from larsi by cm-84.215.51.58.getinternet.no with local (Gmexim 0.1
	(Debian)) id 1AlnuQ-0007hv-00
	for <emacs-devel@gnu.org>; Mon, 02 May 2011 00:02:59 +0200
X-Injected-Via-Gmane: http://gmane.org/
Mail-Followup-To: emacs-devel@gnu.org
Original-Lines: 24
Original-X-Complaints-To: usenet@dough.gmane.org
X-Gmane-NNTP-Posting-Host: cm-84.215.51.58.getinternet.no
Face: iVBORw0KGgoAAAANSUhEUgAAADAAAAAwBAMAAAClLOS0AAAAMFBMVEWEGSLu7ew0BRGPLjKZ
	e32onpxjCB2xr7VsDh7IxccDAAX////+//6Rj5aIUU7+/v1BjlU6AAAB8UlEQVQ4ja3SwWvaUBzA
	8UfdQXoYCC09BC8ZCyWHEZIhnsKGke7iRnEioTiGBSneCg2eBDEg7+RNhoSykkMov0Ohh1HkN8gf
	sJOghB3cxvS6gGcPWdKqe4oeBv1CcnifkAc/fgSnnItRs+gVzKInCIIZwcJ3Lzy5LfaLRs0b6oiX
	1kG9YxF8qHd0fnQx9EoeusmfeyNtCYj77+o13ehib7+fSCS4f5A8GRolrYh3XY/DgIH7DmaYPB5x
	mF2BnvGpU8PLfsnCixVwp0FiiobeOU/U1n81/yIIcCNEPTLcdtey5nA3WutkAQPff+vPm2h+bgk/
	7JgkAjiNFjjmZPcPA0SqhkDT5YaaSTEAMeUeNEpNhbJwKjVFQaBqPt6QVmFHhOsWjel5qigs3KQB
	bgRqqlJ7rI4YsH8DHDqtj0r8qfKyzgBUeKBOq0LjhDzJsSALIDu0chaCugKODWDzos2HsZfDFQ/L
	VkBYgJNiQQT6S3yAF/kqA2lxJxoW37TlU4WBQaYpS2oVDsOBmGN2upK5K2gyPJcahCgMDEg78+z1
	GzgLz6V4iwVT0Y5f2ZSnJCzHgJoyfSKWhXQspmYZmGTK7bEpy77yPuMXSkvYtiW92lqLvfr/FX0M
	cLfA173P3zaBq40n+kYofMhuBMQv3LbLLfwLN2nMwkzvJGgAAAAASUVORK5CYII=
Mail-Copies-To: never
X-Now-Playing: Art Ensemble of Chicago's _Live in Paris (1)_: "Oh,
	Strange (Part Two)"
User-Agent: Gnus/5.110018 (No Gnus v0.18) Emacs/24.0.50 (gnu/linux)
Cancel-Lock: sha1:oFItoPL0amZwIsYgXCmEzNeZ19Q=
X-detected-operating-system: by eggs.gnu.org: GNU/Linux 2.6 (newer, 3)
X-Received-From: 80.91.229.12
X-BeenThere: emacs-devel@gnu.org
X-Mailman-Version: 2.1.14
Precedence: list
List-Id: "Emacs development discussions." <emacs-devel.gnu.org>
List-Unsubscribe: <https://lists.gnu.org/mailman/options/emacs-devel>,
	<mailto:emacs-devel-request@gnu.org?subject=unsubscribe>
List-Archive: </archive/html/emacs-devel>
List-Post: <mailto:emacs-devel@gnu.org>
List-Help: <mailto:emacs-devel-request@gnu.org?subject=help>
List-Subscribe: <https://lists.gnu.org/mailman/listinfo/emacs-devel>,
	<mailto:emacs-devel-request@gnu.org?subject=subscribe>
Errors-To: emacs-devel-bounces+ged-emacs-devel=m.gmane.org@gnu.org
Original-Sender: emacs-devel-bounces+ged-emacs-devel=m.gmane.org@gnu.org
Xref: news.gmane.org gmane.emacs.devel:138947
Archived-At: <http://permalink.gmane.org/gmane.emacs.devel/138947>

Lars Magne Ingebrigtsen <larsi@gnus.org> writes:

> Having a GnuTLS server in Emacs would be nice.

I just had a horrible idea.

I converted pop3.el to use opportunistic STARTTLS upgrades now (one less
thing on my imaginary todo list -- only googleplex more to go), and it
occurred to me that the Emacs Server could use STARTTLS too.

Today you just send the shared secret and then the command, but we could
easily implement a CAPABILITY command, and offer STARTTLS and thereby
allow forward-and-backward compatibility between encrypted and
non-encrypted clients and servers.  :-)

Anyway, I'm not going to tackle that, but just an idea.

Hm...  perhaps I should convert smtpmail.el to use opportunistic
STARTTLS while I'm at it.  Is that the only (major) network library that
has escaped opportunist encryption so far?

-- 
(domestic pets only, the antidote for overdose, milk.)
  bloggy blog http://lars.ingebrigtsen.no/