Re: Security in the emacs package ecosystem

emacs-devel

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: Security in the emacs package ecosystem

From:	Ihor Radchenko
Subject:	Re: Security in the emacs package ecosystem
Date:	Fri, 17 Feb 2023 10:23:48 +0000

Ihor Radchenko <yantar92@posteo.net> writes:

> 2. Allow users to demand package.el to verify signatures when
>    downloading packages. Interested users can then increase their
>    security by rejecting packages without .sig file.

Ok. And it is indeed already in place.
`package-check-signature' customization.

-- 
Ihor Radchenko // yantar92,
Org mode contributor,
Learn more about Org mode at <https://orgmode.org/>.
Support Org development at <https://liberapay.com/org-mode>,
or support my work at <https://liberapay.com/yantar92>

[Prev in Thread]

Current Thread

[Next in Thread]

Re: Security in the emacs package ecosystem, Ihor Radchenko, 2023/02/04
- Re: Security in the emacs package ecosystem, Stefan Kangas, 2023/02/04
  - Re: Security in the emacs package ecosystem, Ihor Radchenko, 2023/02/17
    - Re: Security in the emacs package ecosystem, Ihor Radchenko <=
    - Re: Security in the emacs package ecosystem, Stefan Kangas, 2023/02/17
    - Re: Security in the emacs package ecosystem, Ihor Radchenko, 2023/02/18
    - Re: Security in the emacs package ecosystem, Eli Zaretskii, 2023/02/18
    - Re: Security in the emacs package ecosystem, Richard Stallman, 2023/02/20
    - Re: Security in the emacs package ecosystem, Po Lu, 2023/02/20
    - Re: Security in the emacs package ecosystem, chad, 2023/02/20
    - Making `package-check-signature' more restrictive by default, Stefan Kangas, 2023/02/18

Prev by Date: Re: Security in the emacs package ecosystem
Next by Date: Re: Request to backport fix for CVE-2022-45939 to Emacs 28
Previous by thread: Re: Security in the emacs package ecosystem
Next by thread: Re: Security in the emacs package ecosystem
Index(es):
- Date
- Thread