help-gnu-emacs
[Top][All Lists]
Advanced

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: Ubuntu 16.04 server --- Contacting host: elpa.gnu.org:80 when packag


From: Dan Čermák
Subject: Re: Ubuntu 16.04 server --- Contacting host: elpa.gnu.org:80 when package-refresh-contents
Date: Wed, 17 Jan 2018 15:28:21 +0100

The tile sounds a little click-baity, but it is actually a good tutorial
how to secure the connection to (m)elpa.

Afaik there has been no malware on melpa, but if you download your
packages via http, someone could in theory tamper with your connection
and inject malicious code.

So, don't panic & use https ;-)

Rusi <address@hidden> writes:

> On Wednesday, January 17, 2018 at 6:11:59 PM UTC+5:30, Dan Čermák wrote:
>> If you are setting up a new emacs client, you might want to take a look
>> at this too: https://glyph.twistedmatrix.com/2015/11/editor-malware.html
>
> Hoo Boy!
> Was wondering when this would become a thing…



reply via email to

[Prev in Thread] Current Thread [Next in Thread]