From mboxrd@z Thu Jan 1 00:00:00 1970 Path: news.gmane.org!.POSTED!not-for-mail From: Eli Zaretskii Newsgroups: gmane.emacs.devel Subject: Re: A couple of questions and concerns about Emacs network security Date: Sat, 07 Jul 2018 18:57:32 +0300 Message-ID: <83sh4vhwcz.fsf@gnu.org> References: <20180705093346.071e6970@jabberwock.cb.piermont.com> <83wou9n66t.fsf@gnu.org> <20180705112920.076265d5@jabberwock.cb.piermont.com> <83r2khms1j.fsf@gnu.org> <20180705164500.0bde16cd@jabberwock.cb.piermont.com> <83bmbknafs.fsf@gnu.org> <20180707081833.37561702@jabberwock.cb.piermont.com> <83zhz3i3o3.fsf@gnu.org> <20180707094622.6eff25bf@jabberwock.cb.piermont.com> <20180707111517.723e5cd9@jabberwock.cb.piermont.com> NNTP-Posting-Host: blaine.gmane.org X-Trace: blaine.gmane.org 1530978985 1198 195.159.176.226 (7 Jul 2018 15:56:25 GMT) X-Complaints-To: usenet@blaine.gmane.org NNTP-Posting-Date: Sat, 7 Jul 2018 15:56:25 +0000 (UTC) Cc: larsi@gnus.org, eggert@cs.ucla.edu, emacs-devel@gnu.org, wyuenho@gmail.com, rms@gnu.org To: "Perry E. Metzger" Original-X-From: emacs-devel-bounces+ged-emacs-devel=m.gmane.org@gnu.org Sat Jul 07 17:56:20 2018 Return-path: Envelope-to: ged-emacs-devel@m.gmane.org Original-Received: from lists.gnu.org ([208.118.235.17]) by blaine.gmane.org with esmtp (Exim 4.84_2) (envelope-from ) id 1fbpZM-0000AJ-1b for ged-emacs-devel@m.gmane.org; Sat, 07 Jul 2018 17:56:20 +0200 Original-Received: from localhost ([::1]:34106 helo=lists.gnu.org) by lists.gnu.org with esmtp (Exim 4.71) (envelope-from ) id 1fbpbT-0004xU-57 for ged-emacs-devel@m.gmane.org; Sat, 07 Jul 2018 11:58:31 -0400 Original-Received: from eggs.gnu.org ([2001:4830:134:3::10]:58089) by lists.gnu.org with esmtp (Exim 4.71) (envelope-from ) id 1fbpaq-0004xB-A3 for emacs-devel@gnu.org; Sat, 07 Jul 2018 11:57:55 -0400 Original-Received: from Debian-exim by eggs.gnu.org with spam-scanned (Exim 4.71) (envelope-from ) id 1fbpam-0004Ep-Ew for emacs-devel@gnu.org; Sat, 07 Jul 2018 11:57:52 -0400 Original-Received: from fencepost.gnu.org ([2001:4830:134:3::e]:54360) by eggs.gnu.org with esmtp (Exim 4.71) (envelope-from ) id 1fbpaZ-0004Aq-Nl; Sat, 07 Jul 2018 11:57:35 -0400 Original-Received: from [176.228.60.248] (port=1978 helo=home-c4e4a596f7) by fencepost.gnu.org with esmtpsa (TLS1.2:RSA_AES_256_CBC_SHA1:256) (Exim 4.82) (envelope-from ) id 1fbpaS-00015b-MB; Sat, 07 Jul 2018 11:57:29 -0400 In-reply-to: <20180707111517.723e5cd9@jabberwock.cb.piermont.com> (perry@piermont.com) X-detected-operating-system: by eggs.gnu.org: GNU/Linux 2.2.x-3.x [generic] X-Received-From: 2001:4830:134:3::e X-BeenThere: emacs-devel@gnu.org X-Mailman-Version: 2.1.21 Precedence: list List-Id: "Emacs development discussions." List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , Errors-To: emacs-devel-bounces+ged-emacs-devel=m.gmane.org@gnu.org Original-Sender: "Emacs-devel" Xref: news.gmane.org gmane.emacs.devel:227067 Archived-At: > Date: Sat, 7 Jul 2018 11:15:17 -0400 > From: "Perry E. Metzger" > Cc: Eli Zaretskii , rms@gnu.org, Paul Eggert > , Emacs-Devel devel , Lars > Ingebrigtsen > > So, I'm a security professional, partially responsible for the > creation of some of the protocols in question, I use Emacs for > purposes like reading email and the like, and I'm concerned that I > want my security to be good and that the current mechanisms don't > really give me what I need. And no, I don't want to be asked when I'm > presented with a cert that Google specifically said isn't valid, I > want it to be rejected so I won't accidentally say yes at 3am when > I'm exhausted and not paying attention. There's nothing to prevent you from customizing your Emacs to do precisely what you want. Being a security professional, you are probably qualified to do that better than moist of us. My concern is mainly about the rest of us.