From mboxrd@z Thu Jan 1 00:00:00 1970 Path: news.gmane.org!.POSTED!not-for-mail From: Eli Zaretskii Newsgroups: gmane.emacs.devel Subject: Re: [ANNOUNCE] Emacs 25.3 released Date: Wed, 13 Sep 2017 18:57:55 +0300 Message-ID: <83o9qeoakc.fsf@gnu.org> References: <87wp55t0un.fsf@petton.fr> <87r2vctasb.fsf@petton.fr> <87mv60t6sk.fsf@petton.fr> <837ex4q6uy.fsf@gnu.org> <98D64EB8-736A-4B62-B899-FCB8B94FBEB1@gnu.org> <87bmmetyxa.fsf@gnu.org> Reply-To: Eli Zaretskii NNTP-Posting-Host: blaine.gmane.org X-Trace: blaine.gmane.org 1505318365 22926 195.159.176.226 (13 Sep 2017 15:59:25 GMT) X-Complaints-To: usenet@blaine.gmane.org NNTP-Posting-Date: Wed, 13 Sep 2017 15:59:25 +0000 (UTC) Cc: schwab@suse.de, nicolas@petton.fr, rostislav.svoboda@gmail.com, emacs-devel@gnu.org To: Mike Gerwitz Original-X-From: emacs-devel-bounces+ged-emacs-devel=m.gmane.org@gnu.org Wed Sep 13 17:59:18 2017 Return-path: Envelope-to: ged-emacs-devel@m.gmane.org Original-Received: from lists.gnu.org ([208.118.235.17]) by blaine.gmane.org with esmtp (Exim 4.84_2) (envelope-from ) id 1dsA4M-0005pB-EB for ged-emacs-devel@m.gmane.org; Wed, 13 Sep 2017 17:59:18 +0200 Original-Received: from localhost ([::1]:43186 helo=lists.gnu.org) by lists.gnu.org with esmtp (Exim 4.71) (envelope-from ) id 1dsA4S-0004Xa-7T for ged-emacs-devel@m.gmane.org; Wed, 13 Sep 2017 11:59:24 -0400 Original-Received: from eggs.gnu.org ([2001:4830:134:3::10]:43493) by lists.gnu.org with esmtp (Exim 4.71) (envelope-from ) id 1dsA3X-0004VZ-Eg for emacs-devel@gnu.org; Wed, 13 Sep 2017 11:58:28 -0400 Original-Received: from Debian-exim by eggs.gnu.org with spam-scanned (Exim 4.71) (envelope-from ) id 1dsA3U-00025s-BZ for emacs-devel@gnu.org; Wed, 13 Sep 2017 11:58:27 -0400 Original-Received: from fencepost.gnu.org ([2001:4830:134:3::e]:48778) by eggs.gnu.org with esmtp (Exim 4.71) (envelope-from ) id 1dsA3J-00020U-BY; Wed, 13 Sep 2017 11:58:13 -0400 Original-Received: from 84.94.185.246.cable.012.net.il ([84.94.185.246]:3626 helo=home-c4e4a596f7) by fencepost.gnu.org with esmtpsa (TLS1.2:RSA_AES_256_CBC_SHA1:256) (Exim 4.82) (envelope-from ) id 1dsA3H-0004xy-Gb; Wed, 13 Sep 2017 11:58:13 -0400 In-reply-to: <87bmmetyxa.fsf@gnu.org> (message from Mike Gerwitz on Wed, 13 Sep 2017 11:12:49 -0400) X-detected-operating-system: by eggs.gnu.org: GNU/Linux 2.2.x-3.x [generic] X-Received-From: 2001:4830:134:3::e X-BeenThere: emacs-devel@gnu.org X-Mailman-Version: 2.1.21 Precedence: list List-Id: "Emacs development discussions." List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , Errors-To: emacs-devel-bounces+ged-emacs-devel=m.gmane.org@gnu.org Original-Sender: "Emacs-devel" Xref: news.gmane.org gmane.emacs.devel:218194 Archived-At: > From: Mike Gerwitz > Cc: emacs-devel@gnu.org, Andreas Schwab , nicolas@petton.fr, rostislav.svoboda@gmail.com > Date: Wed, 13 Sep 2017 11:12:49 -0400 > > Also, the tarball was uploaded to ftp.gnu.org, and signed. Uploading to > ftp.gnu.org itself requires the request to be signed with a GPG key > registered on Savannah.[0] This level of security is greater and more > formal than repository commits/tags. Indeed. > If someone's system were compromised to the point of being able to > successfully upload to ftp.gnu.org, chances are that they'll be able to > forge a commit to the repository as well. Before the announcement went out, the tarball was downloaded from ftp.gnu.org to 3 different machines by 2 different people, built on all 3 machines independently, and the build verified to not have the vulnerability which Emacs 25.3 was supposed to fix. I think this made the possibility of tampering negligibly small, if not strictly zero.