Re: Wherein I argue for the inclusion of libnettle in Emacs 24.5

[Stephen J. Turnbull]

David Kastrup writes:

 > "I'll save my own hide, let all the rest be damned." is the current
 > cornerstone of U.S. interior and foreign policies and yes, that's a
 > choice consistent with fear.

I disagree with your analysis.  AFAICS, U.S. interior and foreign
policy is driven by a desire to keep the U.S. electorate from
panicking in the face of terrorism on U.S. soil (which is bad for
their ability to work and consume).  Its flaw (as an implementation)
is that designed on the basis of a naive extrapolation of conventional
policing technology designed for dealing with bar brawls and burglars.

I mention that only because it is similar to the issue that I have
with Ted's proposal -- I see a naive belief that brandishing a bigger
stick at problems is going to make them go away, even if that stick is
flawed and liable to fracture in actual use.

AFAICS these features don't give us anything that GPG doesn't from the
point of view of encrypted email, and their effect on security from
attackers capable of exploiting the "loose coupling" of GPG-based
features (ie, attackers with direct access to your desktop) is
ambiguous at best.  My estimate is that use of these tools (or of
programs received from others using these tools) actually is likely to
leave users more vulnerable than if they used EPG.  I've seen no
analysis that suggests otherwise, just muttering about "tight coupling
is good in security" (whatever that might actually mean).

What's left is that Ted wants a bright! shiny! toy whose benefits to
users seem vaporous at best, and I don't think that's enough to
overcome Stefan's objections *on other grounds* to the particular
implementation (most important, not via a generic FFI).