GNU bug report logs -
#19283
25.0.50; imap.el with man-in-the-middle vulnerability
Previous Next
Reported by: Jens Lechtenboerger <jens.lechtenboerger <at> fsfe.org>
Date: Fri, 5 Dec 2014 19:39:02 UTC
Severity: normal
Tags: security
Found in version 25.0.50
Fixed in version 25.1
Done: Lars Ingebrigtsen <larsi <at> gnus.org>
Bug is archived. No further changes may be made.
To add a comment to this bug, you must first unarchive it, by sending
a message to control AT debbugs.gnu.org, with unarchive 19283 in the body.
You can then email your comments to 19283 AT debbugs.gnu.org in the normal way.
Toggle the display of automated, internal messages from the tracker.
Report forwarded
to
bug-gnu-emacs <at> gnu.org:
bug#19283; Package
emacs.
(Fri, 05 Dec 2014 19:39:02 GMT)
Full text and
rfc822 format available.
Acknowledgement sent
to
Jens Lechtenboerger <jens.lechtenboerger <at> fsfe.org>:
New bug report received and forwarded. Copy sent to
bug-gnu-emacs <at> gnu.org.
(Fri, 05 Dec 2014 19:39:02 GMT)
Full text and
rfc822 format available.
Message #5 received at submit <at> debbugs.gnu.org (full text, mbox):
This is a followup to bug#16978, where I reported multiple MITM
issues.
imap.el uses openssl's s_client via imap-ssl-program.
From the man page:
> The s_client utility is a test tool and is designed to continue
> the handshake after any certificate verification errors. As a
> result it will accept any certificate chain (trusted or not) sent
> by the peer. None test applications should not do this as it makes
> them vulnerable to a MITM attack. This behaviour can be changed by
> with the -verify_return_error option: any verify errors are then
> returned aborting the handshake.
In addition, imap.el only tries SSLv2 and SSLv3, whose end-of-life
might be near. I cannot access some of my servers at all (as they
only allow TLS).
If the above was fixed, one would still be vulnerable to attacks
with “trusted” certificates.
imap.el should probably use nsm.el. In the meantime, I continue to
use the following:
(setq imap-ssl-program '("gnutls-cli --strict-tofu -p %p %s"))
Best wishes
Jens
Information forwarded
to
bug-gnu-emacs <at> gnu.org:
bug#19283; Package
emacs.
(Fri, 05 Dec 2014 19:48:01 GMT)
Full text and
rfc822 format available.
Message #8 received at 19283 <at> debbugs.gnu.org (full text, mbox):
Jens Lechtenboerger <jens.lechtenboerger <at> fsfe.org> writes:
> In addition, imap.el only tries SSLv2 and SSLv3,
imap.el always tries STARTTLS and TLS before SSL, unless you force it to
do otherwise.
Andreas.
--
Andreas Schwab, schwab <at> linux-m68k.org
GPG Key fingerprint = 58CA 54C7 6D53 942B 1756 01D3 44D5 214B 8276 4ED5
"And now for something completely different."
Information forwarded
to
bug-gnu-emacs <at> gnu.org:
bug#19283; Package
emacs.
(Fri, 05 Dec 2014 20:40:02 GMT)
Full text and
rfc822 format available.
Message #11 received at 19283 <at> debbugs.gnu.org (full text, mbox):
On 2014-12-05, Andreas Schwab wrote:
> Jens Lechtenboerger <jens.lechtenboerger <at> fsfe.org> writes:
>
>> In addition, imap.el only tries SSLv2 and SSLv3,
>
> imap.el always tries STARTTLS and TLS before SSL, unless you force it to
> do otherwise.
I’m sorry, I meant to talk about imap-ssl-program, which I mentioned
above that quote. So it should read: “imap-ssl-program in imap.el
only tries SSLv2 and SSLv3”
But you are right, I’m using “:stream ssl” among mail-sources.
If I remove that, the connection uses STARTTLS, which ultimately
calls starttls-gnutls-program, for which I suggested
(setq starttls-extra-arguments '("--strict-tofu"))
in bug#16978 to avoid MITM with “trusted” certificates.
Changing to “:stream tls” seems to invoke tls-program, about which I
filed bug#19284.
Best wishes
Jens
Added indication that bug 19283 blocks19759
Request was from
Glenn Morris <rgm <at> gnu.org>
to
control <at> debbugs.gnu.org.
(Sat, 25 Jul 2015 20:13:03 GMT)
Full text and
rfc822 format available.
Information forwarded
to
bug-gnu-emacs <at> gnu.org:
bug#19283; Package
emacs.
(Sat, 26 Dec 2015 21:33:01 GMT)
Full text and
rfc822 format available.
Message #16 received at 19283 <at> debbugs.gnu.org (full text, mbox):
Jens Lechtenboerger <jens.lechtenboerger <at> fsfe.org> writes:
> This is a followup to bug#16978, where I reported multiple MITM
> issues.
>
> imap.el uses openssl's s_client via imap-ssl-program.
This has been fixed in Emacs 25.1 now.
--
(domestic pets only, the antidote for overdose, milk.)
bloggy blog: http://lars.ingebrigtsen.no
bug marked as fixed in version 25.1, send any further explanations to
19283 <at> debbugs.gnu.org and Jens Lechtenboerger <jens.lechtenboerger <at> fsfe.org>
Request was from
Lars Ingebrigtsen <larsi <at> gnus.org>
to
control <at> debbugs.gnu.org.
(Sat, 26 Dec 2015 21:33:02 GMT)
Full text and
rfc822 format available.
bug archived.
Request was from
Debbugs Internal Request <help-debbugs <at> gnu.org>
to
internal_control <at> debbugs.gnu.org.
(Sun, 24 Jan 2016 12:24:11 GMT)
Full text and
rfc822 format available.
This bug report was last modified 9 years and 154 days ago.
Previous Next
GNU bug tracking system
Copyright (C) 1999 Darren O. Benham,
1997,2003 nCipher Corporation Ltd,
1994-97 Ian Jackson.