From mboxrd@z Thu Jan 1 00:00:00 1970 Path: news.gmane.org!.POSTED!not-for-mail From: Jimmy Yuen Ho Wong Newsgroups: gmane.emacs.devel Subject: Re: A couple of questions and concerns about Emacs network security Date: Sun, 24 Jun 2018 23:47:26 +0100 Message-ID: References: <83po0iuhs7.fsf@gnu.org> <83lgb4tg92.fsf@gnu.org> NNTP-Posting-Host: blaine.gmane.org Mime-Version: 1.0 Content-Type: multipart/alternative; boundary="000000000000c63185056f6b0d8b" X-Trace: blaine.gmane.org 1529880402 15903 195.159.176.226 (24 Jun 2018 22:46:42 GMT) X-Complaints-To: usenet@blaine.gmane.org NNTP-Posting-Date: Sun, 24 Jun 2018 22:46:42 +0000 (UTC) Cc: Eli Zaretskii , Paul Eggert , Noam Postavsky , emacs-devel@gnu.org To: Lars Ingebrigtsen Original-X-From: emacs-devel-bounces+ged-emacs-devel=m.gmane.org@gnu.org Mon Jun 25 00:46:38 2018 Return-path: Envelope-to: ged-emacs-devel@m.gmane.org Original-Received: from lists.gnu.org ([208.118.235.17]) by blaine.gmane.org with esmtp (Exim 4.84_2) (envelope-from ) id 1fXDmH-00042S-Gv for ged-emacs-devel@m.gmane.org; Mon, 25 Jun 2018 00:46:37 +0200 Original-Received: from localhost ([::1]:43384 helo=lists.gnu.org) by lists.gnu.org with esmtp (Exim 4.71) (envelope-from ) id 1fXDoO-0007oJ-O2 for ged-emacs-devel@m.gmane.org; Sun, 24 Jun 2018 18:48:48 -0400 Original-Received: from eggs.gnu.org ([2001:4830:134:3::10]:57341) by lists.gnu.org with esmtp (Exim 4.71) (envelope-from ) id 1fXDnZ-0007nx-0a for emacs-devel@gnu.org; Sun, 24 Jun 2018 18:48:00 -0400 Original-Received: from Debian-exim by eggs.gnu.org with spam-scanned (Exim 4.71) (envelope-from ) id 1fXDnU-0005N0-NO for emacs-devel@gnu.org; Sun, 24 Jun 2018 18:47:57 -0400 Original-Received: from mail-it0-x230.google.com ([2607:f8b0:4001:c0b::230]:39686) by eggs.gnu.org with esmtps (TLS1.0:RSA_AES_128_CBC_SHA1:16) (Exim 4.71) (envelope-from ) id 1fXDnP-0005Kx-P4; Sun, 24 Jun 2018 18:47:47 -0400 Original-Received: by mail-it0-x230.google.com with SMTP id p185-v6so9679397itp.4; Sun, 24 Jun 2018 15:47:47 -0700 (PDT) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20161025; h=mime-version:in-reply-to:references:from:date:message-id:subject:to :cc; bh=/RfeA+sprxHuemAzh3+3Mqtz1Tc+ADMSVVqk0V+BV08=; b=g06Ljgy18S0ADXL64/YOI+AVOxO74jkTnrMbJy/qTG6jvu8ZHnK1QrUItx6nWVEhjL lJwIrjUCUjuSZd1/8XbgrBr4aEaQfQF7wr8y8TMXLz5CCvUlFYdALb5QHFtntqy4ADMe THoYgWQCn/2GDcUX4A8CRNXRBewJip2pvTXH5pSXqKfFHuQKOz4M+antvIJvDVuXcDye zWQ8HTvcwj0vFCuUeKpaDJQXYYwMdYmbH7ujNwQ8yzFmiWvVNddwiRX4aHXSVgtrjfYY lNRBoavsxoUHSogUQjFbgC5BhZH1TDhY5i2Culm0PusLC4as7+ERwFQ4CyfzN0rb162X 2Egg== X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20161025; h=x-gm-message-state:mime-version:in-reply-to:references:from:date :message-id:subject:to:cc; bh=/RfeA+sprxHuemAzh3+3Mqtz1Tc+ADMSVVqk0V+BV08=; b=Mu0XoSOnHpJtpy6vGEE1p5QOLzrwgdWQwf9wssvLWU2tMbvcfUlWN5OIf1bLzPBpc4 WiyiYTE5EQMDT875LPCohNWG7O7DZKBeBOKKIel02/SZZiES3CnurmiWKjFs+wJL4I8h YkWn5FLpRie7ZFgx7hEJd+SaFPtyqTITdvYV2tLaxLzkWz63Hrdj4euRsli4KYXBawW4 QaNxxVbWPs3hq0+YUoG6mXeVQr5rhUqsoivZJ+ZpHYWJV1ALrGU0a1UUIu+3dc3OGUqE uhIHC7q5lQPTJJ9hgU/5YhURicpLKx5uBbK2Pp6uizmxyJCTQk0CrbJULb5QXHcFlp+E kkRA== X-Gm-Message-State: APt69E1hD30SHmwSZyc4l0Lsp7EwOxq5lC8mKj3LBJJJrL1eYBwLtFvi QXrtxf9gdtMjBPmNO2FxYjWunEver+dxLDplsug= X-Google-Smtp-Source: ADUXVKKhyvpd6R0pGjVVQIGkbR/pnEFqquoqa2qXxpvlUwpOGKtxgUiqiMmQQo7+GSO7pX54OItu7s0/Wht0zdZCM6E= X-Received: by 2002:a02:1e08:: with SMTP id m8-v6mr6326655jad.8.1529880466827; Sun, 24 Jun 2018 15:47:46 -0700 (PDT) Original-Received: by 2002:a02:985d:0:0:0:0:0 with HTTP; Sun, 24 Jun 2018 15:47:26 -0700 (PDT) In-Reply-To: X-detected-operating-system: by eggs.gnu.org: Genre and OS details not recognized. X-Received-From: 2607:f8b0:4001:c0b::230 X-BeenThere: emacs-devel@gnu.org X-Mailman-Version: 2.1.21 Precedence: list List-Id: "Emacs development discussions." List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , Errors-To: emacs-devel-bounces+ged-emacs-devel=m.gmane.org@gnu.org Original-Sender: "Emacs-devel" Xref: news.gmane.org gmane.emacs.devel:226685 Archived-At: --000000000000c63185056f6b0d8b Content-Type: text/plain; charset="UTF-8" The sha1-intermediate test still fails on 'medium. Also, shouldn't `network-security-protocol-checks' be a defcustom? Lastly, are the dh-small-subgroup and dh-composite tests possible to check in LISP? Thanks for your work! On Sun, Jun 24, 2018 at 10:07 PM, Lars Ingebrigtsen wrote: > Lars Ingebrigtsen writes: > > > I've now pushed the changes to master, so let me know if I accidentally > > broke all Emacs network traffic. It seems to be working OK for me, > > though... > > (And we may want to tweak what tests are on the `medium' level. Let me > know whether the tests trigger a lot in an annoying way.) > > -- > (domestic pets only, the antidote for overdose, milk.) > bloggy blog: http://lars.ingebrigtsen.no > --000000000000c63185056f6b0d8b Content-Type: text/html; charset="UTF-8" Content-Transfer-Encoding: quoted-printable
The sha1-intermediate test still fails on 'medium. Als= o, shouldn't `network-security-protocol-checks' be a defcustom? Las= tly, are the dh-small-subgroup and dh-composite tests possible to check in = LISP?

Thanks for your work!

On Sun, Jun 24, 2018 at 10:07 PM, = Lars Ingebrigtsen <larsi@gnus.org> wrote:
Lars Ingebrigtsen <larsi@gnus.org> writes:

> I've now pushed the changes to master, so let me know if I acciden= tally
> broke all Emacs network traffic.=C2=A0 It seems to be working OK for m= e,
> though...

(And we may want to tweak what tests are on the `medium' level.= =C2=A0 Let me
know whether the tests trigger a lot in an annoying way.)

--
(domestic pets only, the antidote for overdose, milk.)
=C2=A0 =C2=A0bloggy blog: http://lars.ingebrigtsen.no

--000000000000c63185056f6b0d8b--