From mboxrd@z Thu Jan 1 00:00:00 1970 X-Msuck: nntp://news.gmane.io/gmane.emacs.gnus.general/84663 Path: news.gmane.org!not-for-mail From: James Cloos Newsgroups: gmane.emacs.gnus.general Subject: Re: Diffie-Hellman key exchange has been lowered to 256 bits Date: Sun, 22 Jun 2014 14:33:49 +0000 Message-ID: References: <87mwd5z6hi.fsf@hornet.workgroup> NNTP-Posting-Host: plane.gmane.org Mime-Version: 1.0 Content-Type: text/plain X-Trace: ger.gmane.org 1403543460 19728 80.91.229.3 (23 Jun 2014 17:11:00 GMT) X-Complaints-To: usenet@ger.gmane.org NNTP-Posting-Date: Mon, 23 Jun 2014 17:11:00 +0000 (UTC) Cc: ding@gnus.org To: Melleus Original-X-From: ding-owner+M32906@lists.math.uh.edu Mon Jun 23 19:10:54 2014 Return-path: Envelope-to: ding-account@gmane.org Original-Received: from util0.math.uh.edu ([129.7.128.18]) by plane.gmane.org with esmtp (Exim 4.69) (envelope-from ) id 1Wz7ld-0000q0-Fa for ding-account@gmane.org; Mon, 23 Jun 2014 19:10:53 +0200 Original-Received: from localhost ([127.0.0.1] helo=lists.math.uh.edu) by util0.math.uh.edu with smtp (Exim 4.63) (envelope-from ) id 1Wz7jd-00060q-1s; Mon, 23 Jun 2014 12:08:49 -0500 Original-Received: from mx1.math.uh.edu ([129.7.128.32]) by util0.math.uh.edu with esmtps (TLSv1:AES256-SHA:256) (Exim 4.63) (envelope-from ) id 1Wz7jb-00060g-Dh for ding@lists.math.uh.edu; Mon, 23 Jun 2014 12:08:47 -0500 Original-Received: from quimby.gnus.org ([80.91.231.51]) by mx1.math.uh.edu with esmtps (TLSv1:AES128-SHA:128) (Exim 4.76) (envelope-from ) id 1Wz7jZ-0000yP-P3 for ding@lists.math.uh.edu; Mon, 23 Jun 2014 12:08:46 -0500 Original-Received: from ore.jhcloos.com ([198.147.23.85]) by quimby.gnus.org with esmtp (Exim 4.80) (envelope-from ) id 1Wz7jV-00075j-7A for ding@gnus.org; Mon, 23 Jun 2014 19:08:43 +0200 Original-Received: by ore.jhcloos.com (Postfix, from userid 10) id 704811DD32; Sun, 22 Jun 2014 14:38:47 +0000 (UTC) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=jhcloos.com; s=ore14; t=1403543319; bh=Vw7yedxpjOZd/uJGU7SGAFtK5DcsfFaj9YmBLIEVb7Q=; h=From:To:Cc:Subject:In-Reply-To:References:Date:From; b=qAJdsBYKyOZpxNy2OIiRf9qB2n/qOWwDoSc5npDzFkbhYGuzyWe0XKCfmzIPRKhn3 02Dv/Q/IqbeaK4NQm+KD14yLK581rJMgXrKQEowX9LQFopSYUvFllSgGMWX3eTex+w NfkSJ4ldJRINVWQg40DMWNprywJfYY8IHqrw2h+w= Original-Received: by carbon.jhcloos.org (Postfix, from userid 500) id 74B4F6001E; Sun, 22 Jun 2014 14:33:24 +0000 (UTC) In-Reply-To: <87mwd5z6hi.fsf@hornet.workgroup> (melleus@openmailbox.org's message of "Sun, 22 Jun 2014 11:35:53 +0300") User-Agent: Gnus/5.130012 (Ma Gnus v0.12) Emacs/24.4.50 (gnu/linux) Face: iVBORw0KGgoAAAANSUhEUgAAABAAAAAQAgMAAABinRfyAAAACVBMVEX///8ZGXBQKKnCrDQ3 AAAAJElEQVQImWNgQAAXzwQg4SKASgAlXIEEiwsSIYBEcLaAtMEAADJnB+kKcKioAAAAAElFTkSu QmCC Copyright: Copyright 2014 James Cloos OpenPGP: 0x997A9F17ED7DAEA6; url=https://jhcloos.com/public_key/0x997A9F17ED7DAEA6.asc OpenPGP-Fingerprint: E9E9 F828 61A4 6EA9 0F2B 63E7 997A 9F17 ED7D AEA6 Original-Lines: 18 X-Hashcash: 1:30:140622:melleus@openmailbox.org::bP37cG0aPNxdFfLj:0000000000000000000000000000000000000QggFw X-Hashcash: 1:30:140622:ding@gnus.org::+bgvgp7cSzMJkfdA:000LYKO4 X-Spam-Score: -2.0 (--) List-ID: Precedence: bulk Xref: news.gmane.org gmane.emacs.gnus.general:84663 Archived-At: >>>>> "M" == Melleus writes: M> Emacs' gnutls security defaults have been changed. With the default of 256 for gnutls-min-prime-bits, it shouldn't complain about ecdh with SECP256R1. The fact that it does implies that the logic around that variable is wrong. It also shouldn't complain when the remote site, such as gmane, doesn't offer ecdh. But thanks; forcing it to nil does avoid the message. -JimC -- -JimC -- James Cloos OpenPGP: 0x997A9F17ED7DAEA6