From mboxrd@z Thu Jan  1 00:00:00 1970
Path: news.gmane.org!not-for-mail
From: Lars Magne Ingebrigtsen <larsi@gnus.org>
Newsgroups: gmane.emacs.bugs
Subject: bug#17660: 24.3; gnutls-min-prime-bits is 256
Date: Mon, 08 Dec 2014 20:46:35 +0100
Message-ID: <m3r3w953hg.fsf@stories.gnus.org>
References: <87d2eswyoq.wl%jch@pps.univ-paris-diderot.fr>
NNTP-Posting-Host: plane.gmane.org
Mime-Version: 1.0
Content-Type: text/plain
X-Trace: ger.gmane.org 1418068046 3567 80.91.229.3 (8 Dec 2014 19:47:26 GMT)
X-Complaints-To: usenet@ger.gmane.org
NNTP-Posting-Date: Mon, 8 Dec 2014 19:47:26 +0000 (UTC)
Cc: 17660@debbugs.gnu.org
To: Juliusz Chroboczek <jch@pps.univ-paris-diderot.fr>
Original-X-From: bug-gnu-emacs-bounces+geb-bug-gnu-emacs=m.gmane.org@gnu.org Mon Dec 08 20:47:19 2014
Return-path: <bug-gnu-emacs-bounces+geb-bug-gnu-emacs=m.gmane.org@gnu.org>
Envelope-to: geb-bug-gnu-emacs@m.gmane.org
Original-Received: from lists.gnu.org ([208.118.235.17])
	by plane.gmane.org with esmtp (Exim 4.69)
	(envelope-from <bug-gnu-emacs-bounces+geb-bug-gnu-emacs=m.gmane.org@gnu.org>)
	id 1Xy4H7-00048k-8g
	for geb-bug-gnu-emacs@m.gmane.org; Mon, 08 Dec 2014 20:47:17 +0100
Original-Received: from localhost ([::1]:35746 helo=lists.gnu.org)
	by lists.gnu.org with esmtp (Exim 4.71)
	(envelope-from <bug-gnu-emacs-bounces+geb-bug-gnu-emacs=m.gmane.org@gnu.org>)
	id 1Xy4H6-0006JZ-T1
	for geb-bug-gnu-emacs@m.gmane.org; Mon, 08 Dec 2014 14:47:16 -0500
Original-Received: from eggs.gnu.org ([2001:4830:134:3::10]:43148)
	by lists.gnu.org with esmtp (Exim 4.71)
	(envelope-from <Debian-debbugs@debbugs.gnu.org>) id 1Xy4Gy-0006JL-Eg
	for bug-gnu-emacs@gnu.org; Mon, 08 Dec 2014 14:47:13 -0500
Original-Received: from Debian-exim by eggs.gnu.org with spam-scanned (Exim 4.71)
	(envelope-from <Debian-debbugs@debbugs.gnu.org>) id 1Xy4Gs-0006io-Nv
	for bug-gnu-emacs@gnu.org; Mon, 08 Dec 2014 14:47:08 -0500
Original-Received: from debbugs.gnu.org ([140.186.70.43]:60843)
	by eggs.gnu.org with esmtp (Exim 4.71)
	(envelope-from <Debian-debbugs@debbugs.gnu.org>) id 1Xy4Gs-0006ik-KF
	for bug-gnu-emacs@gnu.org; Mon, 08 Dec 2014 14:47:02 -0500
Original-Received: from Debian-debbugs by debbugs.gnu.org with local (Exim 4.80)
	(envelope-from <Debian-debbugs@debbugs.gnu.org>) id 1Xy4Gs-00055D-A0
	for bug-gnu-emacs@gnu.org; Mon, 08 Dec 2014 14:47:02 -0500
X-Loop: help-debbugs@gnu.org
Resent-From: Lars Magne Ingebrigtsen <larsi@gnus.org>
Original-Sender: "Debbugs-submit" <debbugs-submit-bounces@debbugs.gnu.org>
Resent-CC: bug-gnu-emacs@gnu.org
Resent-Date: Mon, 08 Dec 2014 19:47:02 +0000
Resent-Message-ID: <handler.17660.B17660.141806801719526@debbugs.gnu.org>
Resent-Sender: help-debbugs@gnu.org
X-GNU-PR-Message: followup 17660
X-GNU-PR-Package: emacs
X-GNU-PR-Keywords: security
Original-Received: via spool by 17660-submit@debbugs.gnu.org id=B17660.141806801719526
	(code B ref 17660); Mon, 08 Dec 2014 19:47:02 +0000
Original-Received: (at 17660) by debbugs.gnu.org; 8 Dec 2014 19:46:57 +0000
Original-Received: from localhost ([127.0.0.1]:58055 helo=debbugs.gnu.org)
	by debbugs.gnu.org with esmtp (Exim 4.80)
	(envelope-from <debbugs-submit-bounces@debbugs.gnu.org>)
	id 1Xy4Gm-00054r-Q1
	for submit@debbugs.gnu.org; Mon, 08 Dec 2014 14:46:57 -0500
Original-Received: from hermes.netfonds.no ([80.91.224.195]:57011)
	by debbugs.gnu.org with esmtp (Exim 4.80)
	(envelope-from <larsi@gnus.org>) id 1Xy4Gk-00054g-2I
	for 17660@debbugs.gnu.org; Mon, 08 Dec 2014 14:46:55 -0500
Original-Received: from cm-84.215.51.58.getinternet.no ([84.215.51.58]
	helo=stories.gnus.org)
	by hermes.netfonds.no with esmtpsa (TLS1.0:DHE_RSA_AES_128_CBC_SHA1:16)
	(Exim 4.72) (envelope-from <larsi@gnus.org>)
	id 1Xy4GR-0005ph-QL; Mon, 08 Dec 2014 20:46:35 +0100
X-Now-Playing: Paul Barker's _Fix This_: "Psampled 69 Blight"
X-Hashcash: 1:23:141208:jch@pps.univ-paris-diderot.fr::LKH66gpb5oCsTDhY:00000000000000000000000000000000niAF
X-Hashcash: 1:23:141208:17660@debbugs.gnu.org::ec2wrewuuzb2AXmP:0000000000000000000000000000000000000000pUfL
In-Reply-To: <87d2eswyoq.wl%jch@pps.univ-paris-diderot.fr> (Juliusz
	Chroboczek's message of "Sun, 01 Jun 2014 15:23:49 +0200")
User-Agent: Gnus/5.13 (Gnus v5.13) Emacs/25.0.50 (gnu/linux)
X-MailScanner-ID: 1Xy4GR-0005ph-QL
MailScanner-NULL-Check: 1418672796.02215@TBq948QiBr1B/umB/1zbNA
X-BeenThere: debbugs-submit@debbugs.gnu.org
X-Mailman-Version: 2.1.15
Precedence: list
X-detected-operating-system: by eggs.gnu.org: GNU/Linux 3.x
X-Received-From: 140.186.70.43
X-BeenThere: bug-gnu-emacs@gnu.org
List-Id: "Bug reports for GNU Emacs,
	the Swiss army knife of text editors" <bug-gnu-emacs.gnu.org>
List-Unsubscribe: <https://lists.gnu.org/mailman/options/bug-gnu-emacs>,
	<mailto:bug-gnu-emacs-request@gnu.org?subject=unsubscribe>
List-Archive: <http://lists.gnu.org/archive/html/bug-gnu-emacs>
List-Post: <mailto:bug-gnu-emacs@gnu.org>
List-Help: <mailto:bug-gnu-emacs-request@gnu.org?subject=help>
List-Subscribe: <https://lists.gnu.org/mailman/listinfo/bug-gnu-emacs>,
	<mailto:bug-gnu-emacs-request@gnu.org?subject=subscribe>
Errors-To: bug-gnu-emacs-bounces+geb-bug-gnu-emacs=m.gmane.org@gnu.org
Original-Sender: bug-gnu-emacs-bounces+geb-bug-gnu-emacs=m.gmane.org@gnu.org
Xref: news.gmane.org gmane.emacs.bugs:97024
Archived-At: <http://permalink.gmane.org/gmane.emacs.bugs/97024>

Juliusz Chroboczek <jch@pps.univ-paris-diderot.fr> writes:

> In gnutls.el, I see
>
>   (defcustom gnutls-min-prime-bits 256
>      ...)
>
> This uses 256 bits for Diffie-Helman rather than the gnutls default, which
> seems awfully low to me.
>
> It looks like this was lowered due to bug#11267.  I suggest that it really
> should be set to a reasonable value.

In Emacs 25, people who want higher security can use the Network
Security Manager to achieve this, so I think the default here is
reasonable.  Closing.

-- 
(domestic pets only, the antidote for overdose, milk.)
   bloggy blog: http://lars.ingebrigtsen.no