[#83096] File.setuid? on IO (Re: [ruby-cvs:67289] normal:r60108 (trunk): file.c: release GVL in File.{setuid?, setgid?, sticky?}) — Nobuyoshi Nakada <nobu@...>
On 2017/10/04 8:47, normal@ruby-lang.org wrote:
5 messages
2017/10/04
[#83100] Re: File.setuid? on IO (Re: [ruby-cvs:67289] normal:r60108 (trunk): file.c: release GVL in File.{setuid?, setgid?, sticky?})
— Eric Wong <normalperson@...>
2017/10/04
Nobuyoshi Nakada <nobu@ruby-lang.org> wrote:
[#83105] Re: File.setuid? on IO (Re: [ruby-cvs:67289] normal:r60108 (trunk): file.c: release GVL in File.{setuid?, setgid?, sticky?})
— Nobuyoshi Nakada <nobu@...>
2017/10/04
On 2017/10/04 15:55, Eric Wong wrote:
[#83107] Alias Enumerable#include? to Enumerable#includes? — Alberto Almagro <albertoalmagro@...>
Hello,
9 messages
2017/10/04
[#83113] Re: Alias Enumerable#include? to Enumerable#includes?
— "Urabe, Shyouhei" <shyouhei@...>
2017/10/05
This has been requested countless times, then rejected each and every time.
[#83129] Re: Alias Enumerable#include? to Enumerable#includes?
— Alberto Almagro <albertoalmagro@...>
2017/10/05
Sorry I didn't found it on the core mail list's archive.
[#83138] Re: Alias Enumerable#include? to Enumerable#includes?
— "Urabe, Shyouhei" <shyouhei@...>
2017/10/06
Ruby has not been made of popular votes so far. You have to show us
[#83149] Re: Alias Enumerable#include? to Enumerable#includes?
— Eric Wong <normalperson@...>
2017/10/06
Alberto Almagro <albertoalmagro@gmail.com> wrote:
[#83200] [Ruby trunk Feature#13996] [PATCH] file.c: apply2files releases GVL — normalperson@...
Issue #13996 has been reported by normalperson (Eric Wong).
4 messages
2017/10/10
[ruby-core:83119] [Ruby trunk Bug#13962] Change http://unicode.org to https
From:
duerst@...
Date:
2017-10-05 06:33:20 UTC
List:
ruby-core #83119
Issue #13962 has been updated by duerst (Martin D端rst). normalperson (Eric Wong) wrote: > Regardless of HTTPS or not; can we keep known-good > SHA-256/384/512/whatever signature(s) of the to-be-downloaded > files in our repository and validate the downloaded result? > > IIRC, MiTM HTTPS proxies exist, and the CA system is still > vulnerable. Unicode is currently looking at adding checksums. We should definitely integrate these into our process when they are available. Also, please note that while the Unicode files get downloaded when compiling from scratch, we actually process them and commit the result into our repository (e.g. enc/unicode/10.0.0/casefold.h and enc/unicode/10.0.0/name2ctype.h). So any fishy stuff would quickly be detected if it generated diffs for these files. ---------------------------------------- Bug #13962: Change http://unicode.org to https https://bugs.ruby-lang.org/issues/13962#change-67061 * Author: MSP-Greg (Greg L) * Status: Open * Priority: Normal * Assignee: duerst (Martin D端rst) * Target version: * ruby -v: ruby 2.5.0dev (2017-10-01 trunk 60085) [x64-mingw32] * Backport: 2.3: UNKNOWN, 2.4: UNKNOWN ---------------------------------------- I believe downloads from unicode.org can be done via https. See attached patch. Thank you. ---Files-------------------------------- unicode.org.patch (435 Bytes) -- https://bugs.ruby-lang.org/ Unsubscribe: <mailto:ruby-core-request@ruby-lang.org?subject=unsubscribe> <http://lists.ruby-lang.org/cgi-bin/mailman/options/ruby-core>