From mboxrd@z Thu Jan  1 00:00:00 1970
Path: news.gmane.org!.POSTED.blaine.gmane.org!not-for-mail
From: Stefan Monnier <monnier@iro.umontreal.ca>
Newsgroups: gmane.emacs.devel
Subject: Re: Problems updating (M)Elpa packages
Date: Sun, 22 Sep 2019 11:44:18 -0400
Message-ID: <jwvo8zccp9a.fsf-monnier+emacs@gnu.org>
References: <1842726352.615137.1569163229250@mail1.libero.it>
Mime-Version: 1.0
Content-Type: text/plain
Injection-Info: blaine.gmane.org; posting-host="blaine.gmane.org:195.159.176.226";
	logging-data="58634"; mail-complaints-to="usenet@blaine.gmane.org"
User-Agent: Gnus/5.13 (Gnus v5.13) Emacs/27.0.50 (gnu/linux)
Cc: emacs-devel@gnu.org
To: Angelo Graziosi <angelo.g0@libero.it>
Original-X-From: emacs-devel-bounces+ged-emacs-devel=m.gmane.org@gnu.org Sun Sep 22 17:44:33 2019
Return-path: <emacs-devel-bounces+ged-emacs-devel=m.gmane.org@gnu.org>
Envelope-to: ged-emacs-devel@m.gmane.org
Original-Received: from lists.gnu.org ([209.51.188.17])
	by blaine.gmane.org with esmtps (TLS1.2:ECDHE_RSA_AES_256_GCM_SHA384:256)
	(Exim 4.89)
	(envelope-from <emacs-devel-bounces+ged-emacs-devel=m.gmane.org@gnu.org>)
	id 1iC42K-000F8m-B2
	for ged-emacs-devel@m.gmane.org; Sun, 22 Sep 2019 17:44:32 +0200
Original-Received: from localhost ([::1]:47406 helo=lists1p.gnu.org)
	by lists.gnu.org with esmtp (Exim 4.90_1)
	(envelope-from <emacs-devel-bounces+ged-emacs-devel=m.gmane.org@gnu.org>)
	id 1iC42J-00089J-5E
	for ged-emacs-devel@m.gmane.org; Sun, 22 Sep 2019 11:44:31 -0400
Original-Received: from eggs.gnu.org ([2001:470:142:3::10]:50331)
 by lists.gnu.org with esmtp (Exim 4.90_1)
 (envelope-from <monnier@iro.umontreal.ca>) id 1iC42B-00086h-Fv
 for emacs-devel@gnu.org; Sun, 22 Sep 2019 11:44:24 -0400
Original-Received: from Debian-exim by eggs.gnu.org with spam-scanned (Exim 4.71)
 (envelope-from <monnier@iro.umontreal.ca>) id 1iC429-0001eY-Pv
 for emacs-devel@gnu.org; Sun, 22 Sep 2019 11:44:22 -0400
Original-Received: from mailscanner.iro.umontreal.ca ([132.204.25.50]:31268)
 by eggs.gnu.org with esmtps (TLS1.0:DHE_RSA_AES_256_CBC_SHA1:32)
 (Exim 4.71) (envelope-from <monnier@iro.umontreal.ca>)
 id 1iC429-0001eO-Jc
 for emacs-devel@gnu.org; Sun, 22 Sep 2019 11:44:21 -0400
Original-Received: from pmg3.iro.umontreal.ca (localhost [127.0.0.1])
 by pmg3.iro.umontreal.ca (Proxmox) with ESMTP id BFCFF4482B4;
 Sun, 22 Sep 2019 11:44:20 -0400 (EDT)
Original-Received: from mail01.iro.umontreal.ca (unknown [172.31.2.1])
 by pmg3.iro.umontreal.ca (Proxmox) with ESMTP id A177B4482B7;
 Sun, 22 Sep 2019 11:44:19 -0400 (EDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/simple; d=iro.umontreal.ca;
 s=mail; t=1569167059;
 bh=vo+bsOh9s4AGmas2j0hBGJmB0ASMPt4wipx4WBYyvmc=;
 h=From:To:Cc:Subject:References:Date:In-Reply-To:From;
 b=o9Su/0qB3sZ0gJyiWAmY3kmZTxCGKud40PUnum5XYsLhE6pz0JSv/iRngm4r+pBwI
 X+/ovUGq9aiYS0OmZgpVsePiBf0W+YBAtM63MMU4ESkRR7EWPq8roCMgbQ7/sK9py6
 jt3htNyUWoVPlSguqxAn8HKvcQRz9ZmJ8993BxczCMhwYvFzW46tgJxnBzC91dNIS3
 9MPofwCEVZ1GIdtM4fwEpycYyFMI+yTYJxjvDNFf5NPsrheC75K2oDmYcJaxjw1tnS
 upff5DzSGqJ+pUOnHge1DwaiYvMXdBWXfzspp5quhPqdfU0a7QfvenSmmLRCuV1Szs
 ZNMY8pd6pRSRw==
Original-Received: from pastel (76-10-182-129.dsl.teksavvy.com [76.10.182.129])
 by mail01.iro.umontreal.ca (Postfix) with ESMTPSA id 6E3D9120206;
 Sun, 22 Sep 2019 11:44:19 -0400 (EDT)
In-Reply-To: <1842726352.615137.1569163229250@mail1.libero.it> (Angelo
 Graziosi's message of "Sun, 22 Sep 2019 16:40:29 +0200 (CEST)")
X-detected-operating-system: by eggs.gnu.org: GNU/Linux 2.2.x-3.x [generic]
X-Received-From: 132.204.25.50
X-BeenThere: emacs-devel@gnu.org
X-Mailman-Version: 2.1.23
Precedence: list
List-Id: "Emacs development discussions." <emacs-devel.gnu.org>
List-Unsubscribe: <https://lists.gnu.org/mailman/options/emacs-devel>,
 <mailto:emacs-devel-request@gnu.org?subject=unsubscribe>
List-Archive: <https://lists.gnu.org/archive/html/emacs-devel>
List-Post: <mailto:emacs-devel@gnu.org>
List-Help: <mailto:emacs-devel-request@gnu.org?subject=help>
List-Subscribe: <https://lists.gnu.org/mailman/listinfo/emacs-devel>,
 <mailto:emacs-devel-request@gnu.org?subject=subscribe>
Errors-To: emacs-devel-bounces+ged-emacs-devel=m.gmane.org@gnu.org
Original-Sender: "Emacs-devel" <emacs-devel-bounces+ged-emacs-devel=m.gmane.org@gnu.org>
Xref: news.gmane.org gmane.emacs.devel:240241
Archived-At: <http://permalink.gmane.org/gmane.emacs.devel/240241>

> The following issue occurs on two machines WiFi connected, one with W10 Home
> 64 and one with macOS (10.13). I do:
>
>   Options - Manage Emacs packages
>
> a 'Network Security Manager' buffer shows up, containing 'Certificate information', saying that 
>
> 'TLS connection to elpa.gnu.org:443 is insicure for the following reasons:
>
> safe renegotiation is not supported, connection not protected...'

Apparently this is a bug in Emacs, when TLS-1.3 is used Emacs complains
about the lack of support for "safe renegotiation", but that
functionality has been removed from TLS-1.3 so it's perfectly normal
that it's not supported.

> and ask to accept the connection
>
> Always
> no
> session only
> ...

The right answer is "always" ;-)

[ In any case, if you have GPG installed, the security is enforced by
  checking GPG signatures already, so HTTPS mostly provides a bit of
  privacy.  ]


        Stefan