GNU bug report logs - #38125
27.0.50; All "https" connections require ".authinfo.gpg" access

Previous Next

Package: emacs;

Reported by: José L. Domenech <domenechjosel <at> gmail.com>

Date: Fri, 8 Nov 2019 10:48:01 UTC

Severity: normal

Tags: fixed

Found in version 27.0.50

Fixed in version 27.1

Done: Robert Pluim <rpluim <at> gmail.com>

Bug is archived. No further changes may be made.

Full log

Message #11 received at 38125 <at> debbugs.gnu.org (full text, mbox):

From: Robert Pluim <rpluim <at> gmail.com>
To: José L. Domenech <domenechjosel <at> gmail.com>
Cc: 38125 <at> debbugs.gnu.org
Subject: Re: bug#38125: 27.0.50; All "https" connections require
 ".authinfo.gpg" access
Date: Fri, 08 Nov 2019 19:06:56 +0100

Please keep 38125 <at> debbugs.gnu.org in the CC

>>>>> On Fri, 08 Nov 2019 14:11:33 +0100, José L. Domenech <domenechjosel <at> gmail.com> said:

    José> It's annoying and suspicious.

Emacs reads files off the disk all the time, I donʼt see why this
would be any more suspicious.

    José> Give permissions to a file containing sensible content when it is not
    José> really necessary (at least I do not keep in this file any information that can be
    José> used in a https connection) or a trivial operation (like surfing the
    José> Internet) fails.

You donʼt keep any such information there, but other people do, and
'surfing the internet' doesnʼt count as trivial these days. My browser
reads a list of passwords all the time without every asking me anything.

Anyway, since the epa file handler does not react well to you
cancelling decryption, and thereʼs no way that I can see to tell it to
not pop up that failure buffer, the only recourse I see is for you to
customize 'network-stream-use-client-certificates' to nil.

Robert
This bug report was last modified 5 years and 202 days ago.

Previous Next

GNU bug tracking system
Copyright (C) 1999 Darren O. Benham, 1997,2003 nCipher Corporation Ltd, 1994-97 Ian Jackson.