From mboxrd@z Thu Jan 1 00:00:00 1970 Path: news.gmane.org!not-for-mail From: Lars Magne Ingebrigtsen Newsgroups: gmane.emacs.devel Subject: Re: What level to put STARTTLS certificates Date: Wed, 15 Jun 2011 23:25:09 +0200 Organization: Programmerer Ingebrigtsen Message-ID: References: <87mxhisw21.fsf@lifelogs.com> NNTP-Posting-Host: lo.gmane.org Mime-Version: 1.0 Content-Type: text/plain X-Trace: dough.gmane.org 1308176136 2570 80.91.229.12 (15 Jun 2011 22:15:36 GMT) X-Complaints-To: usenet@dough.gmane.org NNTP-Posting-Date: Wed, 15 Jun 2011 22:15:36 +0000 (UTC) To: emacs-devel@gnu.org Original-X-From: emacs-devel-bounces+ged-emacs-devel=m.gmane.org@gnu.org Thu Jun 16 00:15:32 2011 Return-path: Envelope-to: ged-emacs-devel@m.gmane.org Original-Received: from lists.gnu.org ([140.186.70.17]) by lo.gmane.org with esmtp (Exim 4.69) (envelope-from ) id 1QWyN2-0007uB-KT for ged-emacs-devel@m.gmane.org; Thu, 16 Jun 2011 00:15:32 +0200 Original-Received: from localhost ([::1]:36509 helo=lists.gnu.org) by lists.gnu.org with esmtp (Exim 4.71) (envelope-from ) id 1QWyN1-00068K-Fa for ged-emacs-devel@m.gmane.org; Wed, 15 Jun 2011 18:15:31 -0400 Original-Received: from eggs.gnu.org ([140.186.70.92]:42017) by lists.gnu.org with esmtp (Exim 4.71) (envelope-from ) id 1QWxfB-0002kT-8D for emacs-devel@gnu.org; Wed, 15 Jun 2011 17:30:17 -0400 Original-Received: from Debian-exim by eggs.gnu.org with spam-scanned (Exim 4.71) (envelope-from ) id 1QWxf7-00039A-4W for emacs-devel@gnu.org; Wed, 15 Jun 2011 17:30:12 -0400 Original-Received: from lo.gmane.org ([80.91.229.12]:53507) by eggs.gnu.org with esmtp (Exim 4.71) (envelope-from ) id 1QWxf6-00037z-LM for emacs-devel@gnu.org; Wed, 15 Jun 2011 17:30:09 -0400 Original-Received: from list by lo.gmane.org with local (Exim 4.69) (envelope-from ) id 1QWxf3-0002NX-QX for emacs-devel@gnu.org; Wed, 15 Jun 2011 23:30:05 +0200 Original-Received: from cm-84.215.51.58.getinternet.no ([84.215.51.58]) by main.gmane.org with esmtp (Gmexim 0.1 (Debian)) id 1AlnuQ-0007hv-00 for ; Wed, 15 Jun 2011 23:30:05 +0200 Original-Received: from larsi by cm-84.215.51.58.getinternet.no with local (Gmexim 0.1 (Debian)) id 1AlnuQ-0007hv-00 for ; Wed, 15 Jun 2011 23:30:05 +0200 X-Injected-Via-Gmane: http://gmane.org/ Mail-Followup-To: emacs-devel@gnu.org Original-Lines: 24 Original-X-Complaints-To: usenet@dough.gmane.org X-Gmane-NNTP-Posting-Host: cm-84.215.51.58.getinternet.no Face: iVBORw0KGgoAAAANSUhEUgAAADAAAAAwBAMAAAClLOS0AAAAGFBMVEVJPz0vJSM4LiudlJEQ BwUoHhwXDgshFxQMfUe2AAACUklEQVQ4jV2UQU/cMBCFJ3GXXHGkiKsTpPbq7qjtlaIovW5oQ66A UucKRY7/ft+Ms1upA9jOfH5vPJs11GsMXYqGC1cs/R6Up3ua43c+0qf0HzhxlU7M/uq2V82wg+Ga /SsznwrzawhAQ8jgRzJIsy/IfBhCWJYzuKfasH+8JjJfwxrAth1447iCozHfkARQxdDf+T8df2me yfDnJWww263u2L+xD+/Mxm9hW3dFP6zMV8xo0RsfcqhVCIaPhg84mOGcX/c+niRV4o8ErGHdaOlD j7UAj06ItQKslkEOt/xkjdLxttdYpEQIT+JP1c0zf7wAtVphZK7izQtX51NBIJp3gMqm31QE6RAA XS5YvHiiqnp2VMr+tOYaQsj46jESHbSNRCEr1/QKxfqAIU7W2oZGW3fQ4/eayq4+uOLBEVYAHYIk nOGKXIG34gDeagEOEjL4ROqpqLEfWycFpQP06MW3VoGlqEDCsLx4X5aEhzYrsHSUPy1Ynq12iQLP KCugFgV1JHKniiMenNTIxVXNeE3scZJOgDQorMTJpHyRjQFGKy2q7hZGVo/SwqqxSiTay5a2oWlU UJ9TOrYCprGtxaCt20uvXQcQRWJr22ZLtbMAKVqpIjHW9hINxQizjKaMVS+KCYHHcRrHpsGke2ZK SUEeGvyMIp1GAEjiDiQvM4YMJOIoowy2wUAbgLipYzPtMUoNTU3zlEnMKlGApDRjUibODZQU0r+Y 44wNImgSaUZkoosyRy1FuFV6VRYsgtxY7IjzFHEN5BKc/+fgzuNrLB5/AeWpCvHrpQiwAAAAAElF TkSuQmCC Mail-Copies-To: never X-Now-Playing: Demdike Stare's _Tryptych (2): Liberation Through Hearing_: "Bardo Thodol" User-Agent: Gnus/5.110018 (No Gnus v0.18) Emacs/24.0.50 (gnu/linux) Cancel-Lock: sha1:OWRhi/l2Kop/nMH3M0Sz2RVvAe0= X-detected-operating-system: by eggs.gnu.org: GNU/Linux 2.6 (newer, 3) X-Received-From: 80.91.229.12 X-BeenThere: emacs-devel@gnu.org X-Mailman-Version: 2.1.14 Precedence: list List-Id: "Emacs development discussions." List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , Errors-To: emacs-devel-bounces+ged-emacs-devel=m.gmane.org@gnu.org Original-Sender: emacs-devel-bounces+ged-emacs-devel=m.gmane.org@gnu.org Xref: news.gmane.org gmane.emacs.devel:140521 Archived-At: Ted Zlatanov writes: > Why do you need a file: prefix? It should only work with local files > (we pass the file names in `gnutls-boot' to GnuTLS with > `gnutls_certificate_set_x509_key_file' so remote files can't work). We > could support inlined certificates I guess, but it seems like it's > better to assume the token is a file name and extend it later. It's by > far the most common case and the only one gnutls.c supports right now. It's probably over-engineering. I was thinking that perhaps, possibly, it would make sense to allow any credential to be either gpg:, file: or nothing, which would be the literal string. So you could say "password file:~/.foo" if you wanted to, if you (say) had some kind of system that generated passwords per Emacs session or something. So adding a file: name space would make it possible to extend the format unambiguously if something like that would be useful. But it would probably not be useful. :-) -- (domestic pets only, the antidote for overdose, milk.) bloggy blog http://lars.ingebrigtsen.no/