[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
Re: [PATCH RFC] GnuTLS: Support TOFU certificate checking.
From: |
Ted Zlatanov |
Subject: |
Re: [PATCH RFC] GnuTLS: Support TOFU certificate checking. |
Date: |
Thu, 09 Oct 2014 09:17:03 -0400 |
User-agent: |
Gnus/5.130012 (Ma Gnus v0.12) Emacs/24.4.50 (darwin) |
On Thu, 09 Oct 2014 11:43:49 +0900 "Stephen J. Turnbull" <address@hidden>
wrote:
SJT> (2) All data received is squirreled away in a buffer inaccessible to
SJT> Emacs (except for the code that will eventually move it to Lisp,
SJT> of course), and this buffer is "read-locked" until permission is
SJT> received from the user.
I don't think that kind of secure storage and authorization layering is
available in today's Emacs. It would be nice to have it for general
passwords as well. You can sort of hide data from casual dumping by
wrapping it in a closure, but unauthorized code can still extract it
easily.
Ted
- Re: [PATCH RFC] GnuTLS: Support TOFU certificate checking., (continued)
- Re: [PATCH RFC] GnuTLS: Support TOFU certificate checking., Eli Zaretskii, 2014/10/08
- Re: [PATCH RFC] GnuTLS: Support TOFU certificate checking., Lars Magne Ingebrigtsen, 2014/10/08
- Re: [PATCH RFC] GnuTLS: Support TOFU certificate checking., Eli Zaretskii, 2014/10/08
- Re: [PATCH RFC] GnuTLS: Support TOFU certificate checking., Ted Zlatanov, 2014/10/08
- Re: [PATCH RFC] GnuTLS: Support TOFU certificate checking., Lars Magne Ingebrigtsen, 2014/10/08
- Re: [PATCH RFC] GnuTLS: Support TOFU certificate checking., Ted Zlatanov, 2014/10/08
- Re: [PATCH RFC] GnuTLS: Support TOFU certificate checking., Stephen J. Turnbull, 2014/10/08
- Re: [PATCH RFC] GnuTLS: Support TOFU certificate checking.,
Ted Zlatanov <=
- Re: [PATCH RFC] GnuTLS: Support TOFU certificate checking., Toke Høiland-Jørgensen, 2014/10/08
Re: [PATCH RFC] GnuTLS: Support TOFU certificate checking., Ted Zlatanov, 2014/10/08