From mboxrd@z Thu Jan 1 00:00:00 1970 X-Msuck: nntp://news.gmane.io/gmane.emacs.gnus.general/55031 Path: main.gmane.org!not-for-mail From: "Simon Josefsson" Newsgroups: gmane.emacs.gnus.general Subject: Re: Replace starttls.el with GNUTLS based version? Date: Mon, 1 Dec 2003 22:24:03 +0100 (CET) Sender: ding-owner@lists.math.uh.edu Message-ID: <40108.217.208.175.28.1070313843.squirrel@217.208.175.28> References: NNTP-Posting-Host: deer.gmane.org Mime-Version: 1.0 Content-Type: text/plain;charset=iso-8859-1 Content-Transfer-Encoding: quoted-printable X-Trace: sea.gmane.org 1070313862 23182 80.91.224.253 (1 Dec 2003 21:24:22 GMT) X-Complaints-To: usenet@sea.gmane.org NNTP-Posting-Date: Mon, 1 Dec 2003 21:24:22 +0000 (UTC) Original-X-From: ding-owner+M3571@lists.math.uh.edu Mon Dec 01 22:24:19 2003 Return-path: Original-Received: from malifon.math.uh.edu ([129.7.128.13]) by deer.gmane.org with esmtp (Exim 3.35 #1 (Debian)) id 1AQvWl-0000XF-00 for ; Mon, 01 Dec 2003 22:24:19 +0100 Original-Received: from localhost ([127.0.0.1] helo=lists.math.uh.edu) by malifon.math.uh.edu with smtp (Exim 3.20 #1) id 1AQvWc-000758-00; Mon, 01 Dec 2003 15:24:10 -0600 Original-Received: from justine.libertine.org ([66.139.78.221] ident=postfix) by malifon.math.uh.edu with esmtp (Exim 3.20 #1) id 1AQvWY-000753-00 for ding@lists.math.uh.edu; Mon, 01 Dec 2003 15:24:06 -0600 Original-Received: from yxa.extundo.com (178.230.13.217.in-addr.dgcsystems.net [217.13.230.178]) by justine.libertine.org (Postfix) with ESMTP id C3D4B3A0025 for ; Mon, 1 Dec 2003 15:24:04 -0600 (CST) Original-Received: from yxa.extundo.com (localhost.localdomain [127.0.0.1]) by yxa.extundo.com (8.12.10/8.12.10) with ESMTP id hB1LO3rh015608 (version=TLSv1/SSLv3 cipher=EDH-RSA-DES-CBC3-SHA bits=168 verify=NO) for ; Mon, 1 Dec 2003 22:24:03 +0100 Original-Received: (from apache@localhost) by yxa.extundo.com (8.12.10/8.12.1/Submit) id hB1LO3Nn015607; Mon, 1 Dec 2003 22:24:03 +0100 X-Authentication-Warning: yxa.extundo.com: apache set sender to jas@extundo.com using -f Original-Received: from 217.208.175.28 (SquirrelMail authenticated user jas); by yxa.extundo.com with HTTP; Mon, 1 Dec 2003 22:24:03 +0100 (CET) In-Reply-To: Original-To: ding@gnus.org User-Agent: SquirrelMail/1.5.0 [CVS] X-Mailer: SquirrelMail/1.5.0 [CVS] X-Priority: 3 Importance: Normal Precedence: bulk Xref: main.gmane.org gmane.emacs.gnus.general:55031 X-Report-Spam: http://spam.gmane.org/gmane.emacs.gnus.general:55031 >> The external program 'starttls' isn't widely available (e.g., not >> packaged by Debian) and it uses OpenSSL, so I would like to replace >> the current starttls.el with a (partially) backwards compatible >> version that uses GNUTLS. It is currently installed in Gnus CVS >> contrib/starttls.el, and I have been using it for a while. > > Just to make sure I understand correctly, the replacement would allow > me to continue using the starttls program (as long as I am not using > client certificates), right? No. The new starttls.el only works with gnutls-cli. It does work with elisp code written for the old starttls.el, as long as client certificates aren't used. Sorry I was unclear. > The last time I looked GNUTLS required compiling a bunch of other > libraries, whereas starttls was a stand-alone application. Right. Hm. Perhaps it would be wortwhile to merge the new and old starttls.el? So it can fall back to the old code if gnutls-cli isn't installed?