[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
Re: A couple of questions and concerns about Emacs network security
|
From: |
Eli Zaretskii |
|
Subject: |
Re: A couple of questions and concerns about Emacs network security |
|
Date: |
Mon, 25 Jun 2018 20:16:10 +0300 |
> From: Jimmy Yuen Ho Wong <address@hidden>
> Date: Sun, 24 Jun 2018 22:30:50 +0100
> Cc: Eli Zaretskii <address@hidden>, Paul Eggert <address@hidden>,
> Noam Postavsky <address@hidden>, address@hidden
>
> Here's the patch to get GnuTLS to do CRL checking.
Thanks, a few minor comments:
> +(defcustom gnutls-crlfiles
> + '(
> + "/etc/grid-security/certificates/*.crl.pem"
> + )
> + "List of CRL file paths or a function returning said list.
> +If a file path contains a glob pattern, it will be expanded.
> +The files may be in PEM or DER format, as per the GnuTLS documentation.
> +The files may not exist, in which case they will be ignored."
> + :group 'gnutls
> + :type '(choice (function :tag "Function to produce list of CRL filenames")
> + (repeat (file :tag "CRL filename"))))
This should have a :version tag.
Do we really want/need to allow a function here? Isn't a list of
files enough? A function is more dangerous than a string, especially
in a security-sensitive place.
Finally, I think this defcustom needs to be called out in NEWS.
- Re: A couple of questions and concerns about Emacs network security, (continued)
- Re: A couple of questions and concerns about Emacs network security, Eli Zaretskii, 2018/06/24
- Re: A couple of questions and concerns about Emacs network security, Lars Ingebrigtsen, 2018/06/24
- Re: A couple of questions and concerns about Emacs network security, Jimmy Yuen Ho Wong, 2018/06/24
- Re: A couple of questions and concerns about Emacs network security, Lars Ingebrigtsen, 2018/06/24
- Re: A couple of questions and concerns about Emacs network security, Jimmy Yuen Ho Wong, 2018/06/24
- Re: A couple of questions and concerns about Emacs network security, Eli Zaretskii, 2018/06/24
- Re: A couple of questions and concerns about Emacs network security, Jimmy Yuen Ho Wong, 2018/06/24
- Re: A couple of questions and concerns about Emacs network security, Van L, 2018/06/24
- Re: A couple of questions and concerns about Emacs network security, Jimmy Yuen Ho Wong, 2018/06/24
- Re: A couple of questions and concerns about Emacs network security, Jimmy Yuen Ho Wong, 2018/06/24
- Re: A couple of questions and concerns about Emacs network security,
Eli Zaretskii <=
- Re: A couple of questions and concerns about Emacs network security, Jimmy Yuen Ho Wong, 2018/06/25
- Re: A couple of questions and concerns about Emacs network security, Jimmy Yuen Ho Wong, 2018/06/25
- Re: A couple of questions and concerns about Emacs network security, Lars Ingebrigtsen, 2018/06/24
- Re: A couple of questions and concerns about Emacs network security, Lars Ingebrigtsen, 2018/06/24
- Re: A couple of questions and concerns about Emacs network security, Jimmy Yuen Ho Wong, 2018/06/24
- Re: A couple of questions and concerns about Emacs network security, Lars Ingebrigtsen, 2018/06/24
- Re: A couple of questions and concerns about Emacs network security, Noam Postavsky, 2018/06/24
- Re: A couple of questions and concerns about Emacs network security, Lars Ingebrigtsen, 2018/06/24
- Re: A couple of questions and concerns about Emacs network security, Noam Postavsky, 2018/06/24
- Re: A couple of questions and concerns about Emacs network security, Lars Ingebrigtsen, 2018/06/24