[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
Re: security of the emacs package system, elpa, melpa and marmalade
From: |
Stephen J. Turnbull |
Subject: |
Re: security of the emacs package system, elpa, melpa and marmalade |
Date: |
Mon, 30 Sep 2013 23:50:57 +0900 |
Ted Zlatanov writes:
> Hmm, looks like libnettle (brought in with GnuTLS) already provides most
> of the infrastructure needed. The question for me is, should I bother
> with a full OpenPGP signature emulation,
No, don't just "emulate" it, implement the protocol accurately.
> or is it sufficient to implement RSA/DSA/EC-based signatures for
> Emacs internal use only?
No. In security, multiple implementations are a very good thing as
long as they're used to cross-check correct implementation of a
protocol and don't define their own protocols.
- Re: security of the emacs package system, elpa, melpa and marmalade, (continued)
- Re: security of the emacs package system, elpa, melpa and marmalade, chad, 2013/09/27
- Re: security of the emacs package system, elpa, melpa and marmalade, Andreas Röhler, 2013/09/26
- Re: security of the emacs package system, elpa, melpa and marmalade, Richard Stallman, 2013/09/26
- Re: security of the emacs package system, elpa, melpa and marmalade, Matthias Dahl, 2013/09/27
- Re: security of the emacs package system, elpa, melpa and marmalade, Óscar Fuentes, 2013/09/27
- Re: security of the emacs package system, elpa, melpa and marmalade, Ted Zlatanov, 2013/09/29
Re: security of the emacs package system, elpa, melpa and marmalade, Ted Zlatanov, 2013/09/29
- Re: security of the emacs package system, elpa, melpa and marmalade, Daiki Ueno, 2013/09/29
- Re: security of the emacs package system, elpa, melpa and marmalade, Ted Zlatanov, 2013/09/29
- Re: security of the emacs package system, elpa, melpa and marmalade, Ted Zlatanov, 2013/09/30
- Re: security of the emacs package system, elpa, melpa and marmalade,
Stephen J. Turnbull <=
Re: security of the emacs package system, elpa, melpa and marmalade, Matthias Dahl, 2013/09/30
Re: security of the emacs package system, elpa, melpa and marmalade, Ted Zlatanov, 2013/09/30