From mboxrd@z Thu Jan 1 00:00:00 1970 Path: news.gmane.org!.POSTED!not-for-mail From: Dor Azouri Newsgroups: gmane.emacs.bugs Subject: bug#28618: Emacs Security Issue Date: Sun, 01 Oct 2017 15:27:58 +0000 Message-ID: References: <87efqrf4k3.fsf@users.sourceforge.net> <87zi9deixz.fsf@users.sourceforge.net> <87tvzldsj2.fsf@users.sourceforge.net> NNTP-Posting-Host: blaine.gmane.org Mime-Version: 1.0 Content-Type: multipart/alternative; boundary="001a113d78f8bfbe07055a7de775" X-Trace: blaine.gmane.org 1506871751 22824 195.159.176.226 (1 Oct 2017 15:29:11 GMT) X-Complaints-To: usenet@blaine.gmane.org NNTP-Posting-Date: Sun, 1 Oct 2017 15:29:11 +0000 (UTC) Cc: 28618@debbugs.gnu.org To: Noam Postavsky , Glenn Morris Original-X-From: bug-gnu-emacs-bounces+geb-bug-gnu-emacs=m.gmane.org@gnu.org Sun Oct 01 17:29:07 2017 Return-path: Envelope-to: geb-bug-gnu-emacs@m.gmane.org Original-Received: from lists.gnu.org ([208.118.235.17]) by blaine.gmane.org with esmtp (Exim 4.84_2) (envelope-from ) id 1dygB0-0005OK-HV for geb-bug-gnu-emacs@m.gmane.org; Sun, 01 Oct 2017 17:29:06 +0200 Original-Received: from localhost ([::1]:48819 helo=lists.gnu.org) by lists.gnu.org with esmtp (Exim 4.71) (envelope-from ) id 1dygB6-00040g-DN for geb-bug-gnu-emacs@m.gmane.org; Sun, 01 Oct 2017 11:29:12 -0400 Original-Received: from eggs.gnu.org ([2001:4830:134:3::10]:56631) by lists.gnu.org with esmtp (Exim 4.71) (envelope-from ) id 1dygB0-00040P-6X for bug-gnu-emacs@gnu.org; Sun, 01 Oct 2017 11:29:07 -0400 Original-Received: from Debian-exim by eggs.gnu.org with spam-scanned (Exim 4.71) (envelope-from ) id 1dygAw-0002Hh-SL for bug-gnu-emacs@gnu.org; Sun, 01 Oct 2017 11:29:06 -0400 Original-Received: from debbugs.gnu.org ([208.118.235.43]:34199) by eggs.gnu.org with esmtps (TLS1.0:RSA_AES_128_CBC_SHA1:16) (Exim 4.71) (envelope-from ) id 1dygAw-0002HI-Oo for bug-gnu-emacs@gnu.org; Sun, 01 Oct 2017 11:29:02 -0400 Original-Received: from Debian-debbugs by debbugs.gnu.org with local (Exim 4.84_2) (envelope-from ) id 1dygAw-0006Ic-FS for bug-gnu-emacs@gnu.org; Sun, 01 Oct 2017 11:29:02 -0400 X-Loop: help-debbugs@gnu.org Resent-From: Dor Azouri Original-Sender: "Debbugs-submit" Resent-CC: bug-gnu-emacs@gnu.org Resent-Date: Sun, 01 Oct 2017 15:29:02 +0000 Resent-Message-ID: Resent-Sender: help-debbugs@gnu.org X-GNU-PR-Message: followup 28618 X-GNU-PR-Package: emacs X-GNU-PR-Keywords: notabug security Original-Received: via spool by 28618-submit@debbugs.gnu.org id=B28618.150687169724155 (code B ref 28618); Sun, 01 Oct 2017 15:29:02 +0000 Original-Received: (at 28618) by debbugs.gnu.org; 1 Oct 2017 15:28:17 +0000 Original-Received: from localhost ([127.0.0.1]:42880 helo=debbugs.gnu.org) by debbugs.gnu.org with esmtp (Exim 4.84_2) (envelope-from ) id 1dygAC-0006HX-O6 for submit@debbugs.gnu.org; Sun, 01 Oct 2017 11:28:16 -0400 Original-Received: from mail-oi0-f47.google.com ([209.85.218.47]:56352) by debbugs.gnu.org with esmtp (Exim 4.84_2) (envelope-from ) id 1dygAA-0006HG-Rc for 28618@debbugs.gnu.org; Sun, 01 Oct 2017 11:28:15 -0400 Original-Received: by mail-oi0-f47.google.com with SMTP id m198so3787080oig.13 for <28618@debbugs.gnu.org>; Sun, 01 Oct 2017 08:28:14 -0700 (PDT) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=safebreach-com.20150623.gappssmtp.com; s=20150623; h=mime-version:references:in-reply-to:from:date:message-id:subject:to :cc; bh=IBGeV5x6v2uaFnif/Gm6u24mwCKYvpXjIiPhzNZgfwg=; b=k+sYXUxm8p5BbxoKlK5ZpFGJYSkQDL7w2fiUBM58y06N6NZ5dyefpfEnPPcKQKHli6 FGbczOFSNALjGZoICHDO9giEKRa2QBcUxzohVWQ2GzcOJm+vntjZzDUleO93bkc01Ijv 7VzSEyiKPfUIGjiZqRcZdBrAoVdDlq6Byu1i6ZepXhZnFPWTy9h7oy6yPNJgN9t2dcGN Y7FUWrRBHQKRLkebSeatX+RkWfBeSuksTe7I0Oir+EZ7e5/pRjv9BQxM89QybN9chZvJ QuDdoNzI1gOKNJFQR1DUBDFzVGc8+iAMSGiFXAI/txx578XL8AKoddFQTN4PMspROoqL nyGA== X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20161025; h=x-gm-message-state:mime-version:references:in-reply-to:from:date :message-id:subject:to:cc; bh=IBGeV5x6v2uaFnif/Gm6u24mwCKYvpXjIiPhzNZgfwg=; b=S3BGCpnXHomf/kaJcMj1kBMbP7ulKllmpWOsZ096l5rsGg0dQauRcdIRY5jwgo7quA dIx7dxRGC9rBo+y9XQN2Kvf/1OTsIcVw70TwVnoGwcJ0Sxnc0/zQ70YiepGlowuCg7J1 n/b3HQ/WkgAS3O+oMt+QwC1mAAdhNORZRi+u0CZndy1fPsH6R+Azero5IzRI1HLCE2Bf QjQ6j431gTmeitIOO6a4k0I9Cb9NZQpxzW18jxTkrD3voMRIvvhLjCxu1Th147tKrMpC hjyUe7r0vJvepaUhz5pFcxrhjhgHAmCnouoL8JIzdOYPhjnuLljBTgnZ2pS6ReXv/Gi7 udjg== X-Gm-Message-State: AMCzsaU+RQ4TMNr+qezDuazyphpDsSedfDCcJzrAQ+kSLp7Ke+8k1BZW tqoRsZN1Sr7Q6U5bxqlveb7X1EGkhx//JZDfOtSGjQ== X-Google-Smtp-Source: AOwi7QBpIrpuGJnkHAezmXDMiFy8F7wzgP6u2AnZDCI5TIqw1rJcpekNXJ68XogCAnGjdj9piciwQX4SaQPi9kpupXE= X-Received: by 10.202.86.206 with SMTP id k197mr450967oib.254.1506871689059; Sun, 01 Oct 2017 08:28:09 -0700 (PDT) In-Reply-To: <87tvzldsj2.fsf@users.sourceforge.net> X-BeenThere: debbugs-submit@debbugs.gnu.org X-Mailman-Version: 2.1.18 Precedence: list X-detected-operating-system: by eggs.gnu.org: GNU/Linux 2.2.x-3.x [generic] X-Received-From: 208.118.235.43 X-BeenThere: bug-gnu-emacs@gnu.org List-Id: "Bug reports for GNU Emacs, the Swiss army knife of text editors" List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , Errors-To: bug-gnu-emacs-bounces+geb-bug-gnu-emacs=m.gmane.org@gnu.org Original-Sender: "bug-gnu-emacs" Xref: news.gmane.org gmane.emacs.bugs:137742 Archived-At: --001a113d78f8bfbe07055a7de775 Content-Type: text/plain; charset="UTF-8" Thanks for checking this problem. I am convinced by the comments that this is not a pure Emacs issue, though a step can still be taken to help users protect from this abuse. For example, Notepad++ on Windows does not load user plugins (located in AppData) when run as Administrator - unless an Administrator explicitly puts a specific file in the protected installation directory ("allowAppDataPlugins.xml"). Best, Dor Azouri On Sat, Sep 30, 2017 at 1:55 AM Noam Postavsky < npostavs@users.sourceforge.net> wrote: > tags 28618 - unreproducible > tags 28618 + notabug > quit > > Glenn Morris writes: > > > On some systems, sudo may preserve HOME by default. Or it may be > > optional behaviour with "sudo -E" (eg on Debian 8, it seems). > > Ah, that explains the discrepancy then (it's the same with Debian 9, > which I'm using here). > > > Ref eg > > > > > https://security.stackexchange.com/questions/18369/issues-with-preserving-home-on-sudo > > > > As it stands, I don't think this is an Emacs issue. > > I agree. > --001a113d78f8bfbe07055a7de775 Content-Type: text/html; charset="UTF-8" Content-Transfer-Encoding: quoted-printable
Thanks for checking this problem.
I am convinced by the comments that this is not = a pure Emacs issue, though a step can still be taken to help users protect = from this abuse.

For example, Notepad++ on Windows does not load use= r plugins (located in AppData) when run as Administrator - unless an Admini= strator explicitly puts a specific file in the protected installation direc= tory ("allowAppDataPlugins.xml").

Best,
Dor Azouri

=

On Sat, Sep 30, 2017 = at 1:55 AM Noam Postavsky <npostavs@users.sourceforge.net> wrote:
tags 28618 - unreproducible
tags 28618 + notabug
quit

Glenn Morris <rgm@gnu.o= rg> writes:

> On some systems, sudo may preserve HOME by default. Or it may be
> optional behaviour with "sudo -E" (eg on Debian 8, it seems)= .

Ah, that explains the discrepancy then (it's the same with Debian 9, which I'm using here).

> Ref eg
>
> https://s= ecurity.stackexchange.com/questions/18369/issues-with-preserving-home-on-su= do
>
> As it stands, I don't think this is an Emacs issue.

I agree.
--001a113d78f8bfbe07055a7de775--