| From: |
| Eli Zaretskii <eliz-AT-gnu.org> |
| To: |
| Noam Postavsky <npostavs-AT-gmail.com> |
| Subject: |
| Re: A couple of questions and concerns about Emacs network security |
| Date: |
| Sat, 23 Jun 2018 09:40:56 +0300 |
| Message-ID: |
| <83po0iuhs7.fsf@gnu.org> |
| Cc: |
| larsi-AT-gnus.org, eggert-AT-cs.ucla.edu, wyuenho-AT-gmail.com, emacs-devel-AT-gnu.org |
| Archive-link: |
| Article |
> From: Noam Postavsky <npostavs@gmail.com>
> Date: Fri, 22 Jun 2018 22:17:56 -0400
> Cc: Lars Magne Ingebrigtsen <larsi@gnus.org>,
> Jimmy Yuen Ho Wong <wyuenho@gmail.com>,
> Emacs developers <emacs-devel@gnu.org>
>
> On 22 June 2018 at 18:43, Paul Eggert <eggert@cs.ucla.edu> wrote:
> > On 06/22/2018 03:00 PM, Jimmy Yuen Ho Wong wrote:
> >>
> >> 1. Can we update the default network security settings?
> >
> >
> > Yes, I would think so, in the master branch. As you say, the current
> > defaults are inappropriate for today's users.
>
> Can we bump gnutls-min-prime-bits to 1024 on the release branch?
No, I don't think so. Changing these settings needs a prolonged
testing period to uncover any subtle problems with non-conforming
servers that users must be able to access, and such testing is
unlikely to happen on emacs-26 before the next bug-fix release.
If we change this now on emacs-26, we should probably not release
Emacs 26.2 before a year goes by.
