From mboxrd@z Thu Jan  1 00:00:00 1970
Path: news.gmane.org!not-for-mail
From: "Perry E. Metzger" <perry@piermont.com>
Newsgroups: gmane.emacs.devel
Subject: Re: Bug#766395: emacs/gnus: Uses s_client to for SSL.
Date: Mon, 27 Oct 2014 15:39:54 -0400
Message-ID: <20141027153954.08930677@jabberwock.cb.piermont.com>
References: <20141022193441.GA11872@roeckx.be>
	<87zjcnj2k6.fsf@trouble.defaultvalue.org>
	<E1XhLLS-0005Pt-BQ@fencepost.gnu.org>
	<87mw8mzmxj.fsf@mid.deneb.enyo.de>
	<20141023143702.3897e618@jabberwock.cb.piermont.com>
	<8761fazkx7.fsf@mid.deneb.enyo.de>
	<20141023145721.12ed0820@jabberwock.cb.piermont.com>
	<87vbnay5lf.fsf@mid.deneb.enyo.de>
	<20141023154223.45f2c9eb@jabberwock.cb.piermont.com>
	<874muuihjh.fsf@uwakimon.sk.tsukuba.ac.jp>
	<20141023230048.13f8234a@jabberwock.cb.piermont.com>
	<87wq7pgpif.fsf@uwakimon.sk.tsukuba.ac.jp>
	<20141024171421.78720abe@jabberwock.cb.piermont.com>
	<87r3xxgmx2.fsf@uwakimon.sk.tsukuba.ac.jp>
	<20141024204202.276dbb1f@jabberwock.cb.piermont.com>
	<8738a95t6b.fsf@uwakimon.sk.tsukuba.ac.jp>
NNTP-Posting-Host: plane.gmane.org
Mime-Version: 1.0
Content-Type: text/plain; charset=US-ASCII
Content-Transfer-Encoding: 7bit
X-Trace: ger.gmane.org 1414438815 3214 80.91.229.3 (27 Oct 2014 19:40:15 GMT)
X-Complaints-To: usenet@ger.gmane.org
NNTP-Posting-Date: Mon, 27 Oct 2014 19:40:15 +0000 (UTC)
Cc: kurt@roeckx.be, Florian Weimer <fw@deneb.enyo.de>, rms@gnu.org,
	Rob Browning <rlb@defaultvalue.org>, emacs-devel@gnu.org
To: "Stephen J. Turnbull" <stephen@xemacs.org>
Original-X-From: emacs-devel-bounces+ged-emacs-devel=m.gmane.org@gnu.org Mon Oct 27 20:40:09 2014
Return-path: <emacs-devel-bounces+ged-emacs-devel=m.gmane.org@gnu.org>
Envelope-to: ged-emacs-devel@m.gmane.org
Original-Received: from lists.gnu.org ([208.118.235.17])
	by plane.gmane.org with esmtp (Exim 4.69)
	(envelope-from <emacs-devel-bounces+ged-emacs-devel=m.gmane.org@gnu.org>)
	id 1Xiq9A-0007py-0H
	for ged-emacs-devel@m.gmane.org; Mon, 27 Oct 2014 20:40:08 +0100
Original-Received: from localhost ([::1]:35648 helo=lists.gnu.org)
	by lists.gnu.org with esmtp (Exim 4.71)
	(envelope-from <emacs-devel-bounces+ged-emacs-devel=m.gmane.org@gnu.org>)
	id 1Xiq99-0006hM-Kx
	for ged-emacs-devel@m.gmane.org; Mon, 27 Oct 2014 15:40:07 -0400
Original-Received: from eggs.gnu.org ([2001:4830:134:3::10]:58978)
	by lists.gnu.org with esmtp (Exim 4.71)
	(envelope-from <perry@piermont.com>) id 1Xiq91-0006ac-SB
	for emacs-devel@gnu.org; Mon, 27 Oct 2014 15:40:04 -0400
Original-Received: from Debian-exim by eggs.gnu.org with spam-scanned (Exim 4.71)
	(envelope-from <perry@piermont.com>) id 1Xiq8x-0005oB-Hu
	for emacs-devel@gnu.org; Mon, 27 Oct 2014 15:39:59 -0400
Original-Received: from hacklheber.piermont.com ([166.84.7.14]:58244)
	by eggs.gnu.org with esmtp (Exim 4.71)
	(envelope-from <perry@piermont.com>)
	id 1Xiq8x-0005nx-Eq; Mon, 27 Oct 2014 15:39:55 -0400
Original-Received: from snark.cb.piermont.com (localhost [127.0.0.1])
	by hacklheber.piermont.com (Postfix) with ESMTP id A04641440;
	Mon, 27 Oct 2014 15:39:54 -0400 (EDT)
Original-Received: from jabberwock.cb.piermont.com (jabberwock.cb.piermont.com
	[10.160.2.107])
	by snark.cb.piermont.com (Postfix) with ESMTP id 5B3E52DFDB7;
	Mon, 27 Oct 2014 15:39:54 -0400 (EDT)
In-Reply-To: <8738a95t6b.fsf@uwakimon.sk.tsukuba.ac.jp>
X-Mailer: Claws Mail 3.10.1 (GTK+ 2.24.25; x86_64-apple-darwin14.0.0)
X-detected-operating-system: by eggs.gnu.org: GNU/Linux 3.x
X-Received-From: 166.84.7.14
X-BeenThere: emacs-devel@gnu.org
X-Mailman-Version: 2.1.14
Precedence: list
List-Id: "Emacs development discussions." <emacs-devel.gnu.org>
List-Unsubscribe: <https://lists.gnu.org/mailman/options/emacs-devel>,
	<mailto:emacs-devel-request@gnu.org?subject=unsubscribe>
List-Archive: <http://lists.gnu.org/archive/html/emacs-devel>
List-Post: <mailto:emacs-devel@gnu.org>
List-Help: <mailto:emacs-devel-request@gnu.org?subject=help>
List-Subscribe: <https://lists.gnu.org/mailman/listinfo/emacs-devel>,
	<mailto:emacs-devel-request@gnu.org?subject=subscribe>
Errors-To: emacs-devel-bounces+ged-emacs-devel=m.gmane.org@gnu.org
Original-Sender: emacs-devel-bounces+ged-emacs-devel=m.gmane.org@gnu.org
Xref: news.gmane.org gmane.emacs.devel:175907
Archived-At: <http://permalink.gmane.org/gmane.emacs.devel/175907>

On Tue, 28 Oct 2014 02:17:00 +0900 "Stephen J. Turnbull"
<stephen@xemacs.org> wrote:
> Perry E. Metzger writes:
> 
>  > There are ways to provide compatibility without sacrificing
>  > security, however. Read our papers or our (redacted)
>  > recommendations to law enforcement if you wish.
> 
> How many of those law enforcement agencies immediately acted on your
> recommendations?

Several acted quite quickly. I'm not at liberty to discuss the
details for obvious reasons. That said, we had contacts with a large
number of agencies, and they were very interested in our advice.

>  > I think that removing SSL 3.0 support is not an "extreme
>  > measure" and leaving it in isn't "balanced" at this point.
> 
> While my credentials in security aren't anywhere near as good as
> yours, unfortunately, you are obviously an extremist

Whatever. You can keep calling me names all you like -- but it
doesn't make your opinion any more correct. Indeed, no matter what
names you call people, it won't increase the evidence for your
position.


Perry
-- 
Perry E. Metzger		perry@piermont.com