From mboxrd@z Thu Jan 1 00:00:00 1970 Path: news.gmane.org!not-for-mail From: Jens Lechtenboerger Newsgroups: gmane.emacs.bugs Subject: bug#16978: 24.3; SSL/TLS with multiple man-in-the-middle vulnerabilities Date: Fri, 21 Mar 2014 21:49:03 +0100 Organization: Privat Message-ID: <861txvjn0g.fsf@informationelle-selbstbestimmung-im-internet.de> References: <86siqqv938.fsf@informationelle-selbstbestimmung-im-internet.de> <878us88ri7.fsf@lifelogs.com> <86siqqv938.fsf@informationelle-selbstbestimmung-im-internet.de> <86mwgwu0o6.fsf@informationelle-selbstbestimmung-im-internet.de> <87siqg7bnf.fsf@lifelogs.com> <86y5078bhz.fsf@informationelle-selbstbestimmung-im-internet.de> <87ior93rzd.fsf_-_@lifelogs.com> NNTP-Posting-Host: plane.gmane.org Mime-Version: 1.0 Content-Type: text/plain; charset=utf-8 Content-Transfer-Encoding: 8bit X-Trace: ger.gmane.org 1395435014 16227 80.91.229.3 (21 Mar 2014 20:50:14 GMT) X-Complaints-To: usenet@ger.gmane.org NNTP-Posting-Date: Fri, 21 Mar 2014 20:50:14 +0000 (UTC) To: 16978@debbugs.gnu.org Original-X-From: bug-gnu-emacs-bounces+geb-bug-gnu-emacs=m.gmane.org@gnu.org Fri Mar 21 21:50:24 2014 Return-path: Envelope-to: geb-bug-gnu-emacs@m.gmane.org Original-Received: from lists.gnu.org ([208.118.235.17]) by plane.gmane.org with esmtp (Exim 4.69) (envelope-from ) id 1WR6OU-00041w-TY for geb-bug-gnu-emacs@m.gmane.org; Fri, 21 Mar 2014 21:50:23 +0100 Original-Received: from localhost ([::1]:54633 helo=lists.gnu.org) by lists.gnu.org with esmtp (Exim 4.71) (envelope-from ) id 1WR6OU-0000bA-IO for geb-bug-gnu-emacs@m.gmane.org; Fri, 21 Mar 2014 16:50:22 -0400 Original-Received: from eggs.gnu.org ([2001:4830:134:3::10]:49768) by lists.gnu.org with esmtp (Exim 4.71) (envelope-from ) id 1WR6OL-0000VD-O3 for bug-gnu-emacs@gnu.org; Fri, 21 Mar 2014 16:50:19 -0400 Original-Received: from Debian-exim by eggs.gnu.org with spam-scanned (Exim 4.71) (envelope-from ) id 1WR6OC-0004a3-Ql for bug-gnu-emacs@gnu.org; Fri, 21 Mar 2014 16:50:13 -0400 Original-Received: from debbugs.gnu.org ([140.186.70.43]:42767) by eggs.gnu.org with esmtp (Exim 4.71) (envelope-from ) id 1WR6OC-0004Zl-OO for bug-gnu-emacs@gnu.org; Fri, 21 Mar 2014 16:50:04 -0400 Original-Received: from Debian-debbugs by debbugs.gnu.org with local (Exim 4.80) (envelope-from ) id 1WR6OB-0000Sb-WC for bug-gnu-emacs@gnu.org; Fri, 21 Mar 2014 16:50:04 -0400 X-Loop: help-debbugs@gnu.org In-Reply-To: <86siqqv938.fsf@informationelle-selbstbestimmung-im-internet.de> Resent-From: Jens Lechtenboerger Original-Sender: "Debbugs-submit" Resent-CC: bug-gnu-emacs@gnu.org Resent-Date: Fri, 21 Mar 2014 20:50:03 +0000 Resent-Message-ID: Resent-Sender: help-debbugs@gnu.org X-GNU-PR-Message: followup 16978 X-GNU-PR-Package: emacs X-GNU-PR-Keywords: security X-Debbugs-Original-To: bug-gnu-emacs@gnu.org Original-Received: via spool by submit@debbugs.gnu.org id=B.13954349781725 (code B ref -1); Fri, 21 Mar 2014 20:50:03 +0000 Original-Received: (at submit) by debbugs.gnu.org; 21 Mar 2014 20:49:38 +0000 Original-Received: from localhost ([127.0.0.1]:43949 helo=debbugs.gnu.org) by debbugs.gnu.org with esmtp (Exim 4.80) (envelope-from ) id 1WR6Nl-0000Rk-FY for submit@debbugs.gnu.org; Fri, 21 Mar 2014 16:49:38 -0400 Original-Received: from eggs.gnu.org ([208.118.235.92]:47932) by debbugs.gnu.org with esmtp (Exim 4.80) (envelope-from ) id 1WR6Nj-0000RX-6m for submit@debbugs.gnu.org; Fri, 21 Mar 2014 16:49:36 -0400 Original-Received: from Debian-exim by eggs.gnu.org with spam-scanned (Exim 4.71) (envelope-from ) id 1WR6Nd-0004O0-Bl for submit@debbugs.gnu.org; Fri, 21 Mar 2014 16:49:34 -0400 Original-Received: from lists.gnu.org ([2001:4830:134:3::11]:49459) by eggs.gnu.org with esmtp (Exim 4.71) (envelope-from ) id 1WR6Nd-0004Nw-8R for submit@debbugs.gnu.org; Fri, 21 Mar 2014 16:49:29 -0400 Original-Received: from eggs.gnu.org ([2001:4830:134:3::10]:49632) by lists.gnu.org with esmtp (Exim 4.71) (envelope-from ) id 1WR6NX-00009l-Uj for bug-gnu-emacs@gnu.org; Fri, 21 Mar 2014 16:49:29 -0400 Original-Received: from Debian-exim by eggs.gnu.org with spam-scanned (Exim 4.71) (envelope-from ) id 1WR6NS-0004MI-Pl for bug-gnu-emacs@gnu.org; Fri, 21 Mar 2014 16:49:23 -0400 Original-Received: from plane.gmane.org ([80.91.229.3]:34502) by eggs.gnu.org with esmtp (Exim 4.71) (envelope-from ) id 1WR6NS-0004M4-J6 for bug-gnu-emacs@gnu.org; Fri, 21 Mar 2014 16:49:18 -0400 Original-Received: from list by plane.gmane.org with local (Exim 4.69) (envelope-from ) id 1WR6NP-0002OV-Pc for bug-gnu-emacs@gnu.org; Fri, 21 Mar 2014 21:49:15 +0100 Original-Received: from mnsr-d9bf35af.pool.mediaways.net ([217.191.53.175]) by main.gmane.org with esmtp (Gmexim 0.1 (Debian)) id 1AlnuQ-0007hv-00 for ; Fri, 21 Mar 2014 21:49:15 +0100 Original-Received: from jens.lechtenboerger by mnsr-d9bf35af.pool.mediaways.net with local (Gmexim 0.1 (Debian)) id 1AlnuQ-0007hv-00 for ; Fri, 21 Mar 2014 21:49:15 +0100 X-Injected-Via-Gmane: http://gmane.org/ Mail-Followup-To: bug-gnu-emacs@gnu.org Original-Lines: 30 Original-X-Complaints-To: usenet@ger.gmane.org X-Gmane-NNTP-Posting-Host: mnsr-d9bf35af.pool.mediaways.net Mail-Copies-To: never OpenPGP: id=0xA142FD84; url=http://www.informationelle-selbstbestimmung-im-internet.de/A142FD84.asc User-Agent: Gnus/5.13 (Gnus v5.13) Emacs/24.3.50 (gnu/linux) Cancel-Lock: sha1:4wLiU5r84mfDg25BwkDcNwsdBHU= X-detected-operating-system: by eggs.gnu.org: Genre and OS details not recognized. X-detected-operating-system: by eggs.gnu.org: Error: Malformed IPv6 address (bad octet value). X-BeenThere: debbugs-submit@debbugs.gnu.org X-Mailman-Version: 2.1.15 Precedence: list X-detected-operating-system: by eggs.gnu.org: GNU/Linux 3.x X-Received-From: 140.186.70.43 X-BeenThere: bug-gnu-emacs@gnu.org List-Id: "Bug reports for GNU Emacs, the Swiss army knife of text editors" List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , Errors-To: bug-gnu-emacs-bounces+geb-bug-gnu-emacs=m.gmane.org@gnu.org Original-Sender: bug-gnu-emacs-bounces+geb-bug-gnu-emacs=m.gmane.org@gnu.org Xref: news.gmane.org gmane.emacs.bugs:87120 Archived-At: On Thu, 20 Mar 2014 09:43:50 -0400, Ted Zlatanov said: TZ> For storage of the certificates, I think TZ> ~/.emacs.d/certs/hostname.somextension is the right place. I TZ> asked this on gnutls-devel a while ago so we can revisit the TZ> discussion when we have the UI worked out. Hi Ted, GnuTLS uses the file ~/.gnutls/known_hosts. I did not look into this, but why do want to duplicate that functionality in Emacs? JL> P.S. Self-signed certs are unusable now [...] TZ> Hmm. That seems a Gnus bug :) Can you submit it separately, to TZ> keep the books clean, after testing with the latest Gnus? Done: http://debbugs.gnu.org/17061 JL> P.P.S. I’m using imap.el, which knows of various ways to JL> establish SSL/TLS connections, but gnutls.el is not among them. TZ> I think you're on an old Gnus then, which is strange considering TZ> you're testing with a recent Emacs. What's `M-x gnus-version'? v5.13 and Ma Gnus v0.10. I’m using imap among `mail-sources' via imap.el, not nnimap. (The latter is on my todo list.) Best wishes Jens