[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
bug#13374: 24.?; open-gnutls-stream insecurity
|
From: |
Lars Magne Ingebrigtsen |
|
Subject: |
bug#13374: 24.?; open-gnutls-stream insecurity |
|
Date: |
Tue, 08 Jan 2013 05:20:00 +0100 |
|
User-agent: |
Gnus/5.130006 (Ma Gnus v0.6) Emacs/24.3.50 (gnu/linux) |
Glenn Morris <rgm@gnu.org> writes:
> Could you look at this report, with a view to possibly changing it in
> emacs-24 branch, if appropriate? Thanks.
Well, the issue is what we do when we get a certificate we can't
validate.
The traditional thing to do is to query the user for whether to connect
anyway, and whether to record a permanent exception for that
certificate.
The code to do that hasn't been written yet.
It's very common for SMTP and IMAP servers to use self-signed
certificates, so just forcing ":validate t" for all connections would
essentially mean that Emacs would be unusable for reading/sending email
(using encryption) before that code has been written.
--
(domestic pets only, the antidote for overdose, milk.)
bloggy blog http://lars.ingebrigtsen.no/
- bug#13374: 24.?; open-gnutls-stream insecurity, Oleksii Shevchuk, 2013/01/07
- bug#13374: 24.?; open-gnutls-stream insecurity, Glenn Morris, 2013/01/07
- bug#13374: 24.?; open-gnutls-stream insecurity,
Lars Magne Ingebrigtsen <=
- bug#13374: 24.?; open-gnutls-stream insecurity, Glenn Morris, 2013/01/07
- bug#13374: 24.?; open-gnutls-stream insecurity, Lars Magne Ingebrigtsen, 2013/01/07
- bug#13374: 24.?; open-gnutls-stream insecurity, Ted Zlatanov, 2013/01/08
- bug#13374: 24.?; open-gnutls-stream insecurity, Lars Magne Ingebrigtsen, 2013/01/08
- bug#13374: 24.?; open-gnutls-stream insecurity, Ted Zlatanov, 2013/01/08
- bug#13374: 24.?; open-gnutls-stream insecurity, Stefan Monnier, 2013/01/08