From mboxrd@z Thu Jan 1 00:00:00 1970 Path: news.gmane.org!not-for-mail From: Ted Zlatanov Newsgroups: gmane.emacs.devel Subject: Re: bug#14380: 24.3; `network-stream-open-tls' fails in some imap servers on w32 Date: Fri, 24 May 2013 15:27:19 -0400 Organization: =?utf-8?B?0KLQtdC+0LTQvtGAINCX0LvQsNGC0LDQvdC+0LI=?= @ Cienfuegos Message-ID: <877gio2n6w.fsf@lifelogs.com> References: <87k3mw79iv.fsf@lifelogs.com> <87zjvr64lt.fsf_-_@lifelogs.com> <87txly4ll9.fsf@lifelogs.com> <87ppwm3rcf.fsf@lifelogs.com> <8361ydwrpy.fsf@gnu.org> Reply-To: emacs-devel@gnu.org NNTP-Posting-Host: plane.gmane.org Mime-Version: 1.0 Content-Type: text/plain X-Trace: ger.gmane.org 1369423659 5264 80.91.229.3 (24 May 2013 19:27:39 GMT) X-Complaints-To: usenet@ger.gmane.org NNTP-Posting-Date: Fri, 24 May 2013 19:27:39 +0000 (UTC) To: emacs-devel@gnu.org Original-X-From: emacs-devel-bounces+ged-emacs-devel=m.gmane.org@gnu.org Fri May 24 21:27:36 2013 Return-path: Envelope-to: ged-emacs-devel@m.gmane.org Original-Received: from lists.gnu.org ([208.118.235.17]) by plane.gmane.org with esmtp (Exim 4.69) (envelope-from ) id 1UfxeJ-0005q9-Mc for ged-emacs-devel@m.gmane.org; Fri, 24 May 2013 21:27:35 +0200 Original-Received: from localhost ([::1]:59610 helo=lists.gnu.org) by lists.gnu.org with esmtp (Exim 4.71) (envelope-from ) id 1UfxeJ-0006la-9F for ged-emacs-devel@m.gmane.org; Fri, 24 May 2013 15:27:35 -0400 Original-Received: from eggs.gnu.org ([208.118.235.92]:56630) by lists.gnu.org with esmtp (Exim 4.71) (envelope-from ) id 1UfxeF-0006lP-PG for emacs-devel@gnu.org; Fri, 24 May 2013 15:27:33 -0400 Original-Received: from Debian-exim by eggs.gnu.org with spam-scanned (Exim 4.71) (envelope-from ) id 1UfxeE-0001gj-Qs for emacs-devel@gnu.org; Fri, 24 May 2013 15:27:31 -0400 Original-Received: from plane.gmane.org ([80.91.229.3]:50719) by eggs.gnu.org with esmtp (Exim 4.71) (envelope-from ) id 1UfxeE-0001gR-KF for emacs-devel@gnu.org; Fri, 24 May 2013 15:27:30 -0400 Original-Received: from list by plane.gmane.org with local (Exim 4.69) (envelope-from ) id 1UfxeD-0005mT-0B for emacs-devel@gnu.org; Fri, 24 May 2013 21:27:29 +0200 Original-Received: from pool-72-93-26-80.bstnma.east.verizon.net ([72.93.26.80]) by main.gmane.org with esmtp (Gmexim 0.1 (Debian)) id 1AlnuQ-0007hv-00 for ; Fri, 24 May 2013 21:27:28 +0200 Original-Received: from tzz by pool-72-93-26-80.bstnma.east.verizon.net with local (Gmexim 0.1 (Debian)) id 1AlnuQ-0007hv-00 for ; Fri, 24 May 2013 21:27:28 +0200 X-Injected-Via-Gmane: http://gmane.org/ Mail-Followup-To: emacs-devel@gnu.org Original-Lines: 45 Original-X-Complaints-To: usenet@ger.gmane.org X-Gmane-NNTP-Posting-Host: pool-72-93-26-80.bstnma.east.verizon.net X-Face: bd.DQ~'29fIs`T_%O%C\g%6jW)yi[zuz6; d4V0`@y-~$#3P_Ng{@m+e4o<4P'#(_GJQ%TT= D}[Ep*b!\e,fBZ'j_+#"Ps?s2!4H2-Y"sx" Mail-Copies-To: never User-Agent: Gnus/5.130006 (Ma Gnus v0.6) Emacs/24.3.50 (gnu/linux) Cancel-Lock: sha1:uccGbEKniOh0Su5UdXJVmWtIjok= X-detected-operating-system: by eggs.gnu.org: Genre and OS details not recognized. X-Received-From: 80.91.229.3 X-BeenThere: emacs-devel@gnu.org X-Mailman-Version: 2.1.14 Precedence: list List-Id: "Emacs development discussions." List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , Errors-To: emacs-devel-bounces+ged-emacs-devel=m.gmane.org@gnu.org Original-Sender: emacs-devel-bounces+ged-emacs-devel=m.gmane.org@gnu.org Xref: news.gmane.org gmane.emacs.devel:159772 Archived-At: On Mon, 20 May 2013 19:17:45 +0300 Eli Zaretskii wrote: >> From: Ted Zlatanov >> Date: Mon, 20 May 2013 05:58:40 -0400 >> >> On Mon, 20 May 2013 04:08:57 +0200 Juanma Barranquero wrote: >> JB> On Mon, May 20, 2013 at 1:05 AM, Ted Zlatanov wrote: >> >> It would mean changing the way Mac OS X and W32 Emacs >> >> builds are distributed, to include the GnuTLS libraries with the build, >> >> and we'd have to implement a way (perhaps through the ELPA) to >> >> distribute updates to these libraries. >> JB> Why would that be a good idea now if it wasn't seen as such before? >> >> Because we've had years of experience supporting GnuTLS, we're moving to >> GnuTLS 3.x soon EZ> What do you mean by "moving to GnuTLS 3.x soon"? For Windows users, EZ> the recommended GnuTLS port is of v3.0.9; isn't that "3.x" already? We use the 2.x API which works with 3.x. >> [1] I also proposed the ELPA as the way to distribute GnuTLS updates. >> There's a separate thread about signing ELPA packages which would let us >> avoid using a broken GnuTLS to pull its own updates, but that's not >> essential to my proposal. EZ> Sorry, I'm confused: are you talking about securing Emacs or about EZ> securing ELPA? You mix these two (which are quite different issues EZ> with very different implications) in ways that make it hard to EZ> understand what are you saying. There is nothing about securing Emacs itself here (that topic includes secure credential storage and such, which are not relevant here). I'm talking about two things: 1) distributing GnuTLS with Emacs and also distributing updates to it. 2) possibly using the ELPA to distribute the GnuTLS updates as a package that's signed. Ted