Re: cannot download packages from elpa

emacs-devel

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: cannot download packages from elpa

From:	Dmitry Gutov
Subject:	Re: cannot download packages from elpa
Date:	Thu, 3 Oct 2019 17:19:18 +0300
User-agent:	Mozilla/5.0 (X11; Linux x86_64; rv:60.0) Gecko/20100101 Thunderbird/60.8.0

On 03.10.2019 4:55, Stefan Monnier wrote:

If you use an older Emacs to fetch the packages you need to first update
the keys or disable signature checking.

I wonder: if we served ELPA over HTTPS only, would the signaturechecking really add any tangible security benefit?

To continue that train of thought, if the only key we had to worry inthat respect is the HTTP certificate, the older releases of Emacs wouldneed no updates over time (aside from changing the repo url to https://once).

[Prev in Thread]

Current Thread

[Next in Thread]

cannot download packages from elpa, Daniel Sutton, 2019/10/02
- Re: cannot download packages from elpa, Stefan Monnier, 2019/10/02
  - Re: cannot download packages from elpa, Daniel Sutton, 2019/10/02
  - Re: cannot download packages from elpa, Dmitry Gutov <=
- Re: cannot download packages from elpa, dick . r . chiang, 2019/10/02
  - Re: cannot download packages from elpa, Stefan Monnier, 2019/10/03
    - Re: cannot download packages from elpa, dick . r . chiang, 2019/10/03
    - Re: cannot download packages from elpa, Stefan Monnier, 2019/10/03

Prev by Date: Re: cannot download packages from elpa
Next by Date: Re: A project-files implementation for Git projects
Previous by thread: Re: cannot download packages from elpa
Next by thread: Re: cannot download packages from elpa
Index(es):
- Date
- Thread