From mboxrd@z Thu Jan 1 00:00:00 1970 Path: news.gmane.org!not-for-mail From: Stefan Monnier Newsgroups: gmane.emacs.devel Subject: Re: security of the emacs package system, elpa, melpa and marmalade Date: Wed, 25 Sep 2013 21:09:42 -0400 Message-ID: References: <523FEE1B.9020408@binary-island.eu> <52429ABD.6090603@binary-island.eu> <52432BE9.1070402@binary-island.eu> NNTP-Posting-Host: plane.gmane.org Mime-Version: 1.0 Content-Type: text/plain X-Trace: ger.gmane.org 1380157812 3039 80.91.229.3 (26 Sep 2013 01:10:12 GMT) X-Complaints-To: usenet@ger.gmane.org NNTP-Posting-Date: Thu, 26 Sep 2013 01:10:12 +0000 (UTC) Cc: emacs-devel@gnu.org To: Matthias Dahl Original-X-From: emacs-devel-bounces+ged-emacs-devel=m.gmane.org@gnu.org Thu Sep 26 03:10:13 2013 Return-path: Envelope-to: ged-emacs-devel@m.gmane.org Original-Received: from lists.gnu.org ([208.118.235.17]) by plane.gmane.org with esmtp (Exim 4.69) (envelope-from ) id 1VP05t-0000i1-4T for ged-emacs-devel@m.gmane.org; Thu, 26 Sep 2013 03:10:13 +0200 Original-Received: from localhost ([::1]:55647 helo=lists.gnu.org) by lists.gnu.org with esmtp (Exim 4.71) (envelope-from ) id 1VP05s-0006zk-0C for ged-emacs-devel@m.gmane.org; Wed, 25 Sep 2013 21:10:12 -0400 Original-Received: from eggs.gnu.org ([2001:4830:134:3::10]:52819) by lists.gnu.org with esmtp (Exim 4.71) (envelope-from ) id 1VP05i-0006uv-DU for emacs-devel@gnu.org; Wed, 25 Sep 2013 21:10:09 -0400 Original-Received: from Debian-exim by eggs.gnu.org with spam-scanned (Exim 4.71) (envelope-from ) id 1VP05Y-0007RJ-2A for emacs-devel@gnu.org; Wed, 25 Sep 2013 21:10:02 -0400 Original-Received: from ironport2-out.teksavvy.com ([206.248.154.182]:27273) by eggs.gnu.org with esmtp (Exim 4.71) (envelope-from ) id 1VP05X-0007RF-TM for emacs-devel@gnu.org; Wed, 25 Sep 2013 21:09:51 -0400 X-IronPort-Anti-Spam-Filtered: true X-IronPort-Anti-Spam-Result: Av4EABK/CFG4rw0Z/2dsb2JhbABEvw4Xc4IeAQEEAVYjBQsLDiYSFBgNJC6HcAbBLZEKA5JbA5IcgV6DEw X-IPAS-Result: Av4EABK/CFG4rw0Z/2dsb2JhbABEvw4Xc4IeAQEEAVYjBQsLDiYSFBgNJC6HcAbBLZEKA5JbA5IcgV6DEw X-IronPort-AV: E=Sophos;i="4.84,565,1355115600"; d="scan'208";a="29092384" Original-Received: from 184-175-13-25.dsl.teksavvy.com (HELO pastel.home) ([184.175.13.25]) by ironport2-out.teksavvy.com with ESMTP/TLS/ADH-AES256-SHA; 25 Sep 2013 21:05:31 -0400 Original-Received: by pastel.home (Postfix, from userid 20848) id 5C8F462D6C; Wed, 25 Sep 2013 21:09:42 -0400 (EDT) In-Reply-To: <52432BE9.1070402@binary-island.eu> (Matthias Dahl's message of "Wed, 25 Sep 2013 20:31:05 +0200") User-Agent: Gnus/5.13 (Gnus v5.13) Emacs/24.3.50 (gnu/linux) X-detected-operating-system: by eggs.gnu.org: Genre and OS details not recognized. X-Received-From: 206.248.154.182 X-BeenThere: emacs-devel@gnu.org X-Mailman-Version: 2.1.14 Precedence: list List-Id: "Emacs development discussions." List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , Errors-To: emacs-devel-bounces+ged-emacs-devel=m.gmane.org@gnu.org Original-Sender: emacs-devel-bounces+ged-emacs-devel=m.gmane.org@gnu.org Xref: news.gmane.org gmane.emacs.devel:163646 Archived-At: > The question that is bugging me now: Why is that? For the same reason it uses dynamic scoping, dynamic typing, hooks galore, defadvice, ... Emacs is about empowering the user. Also it grew in a context where security was not a serious concern. > I'm just throwing my thoughts in the mix at this time. All this would > need a lot more thought and work, obviously. But I honestly think this > would be a goal worth pursuing since security should never be taken > lightly, imho. To me, the problem it too ill-understood to be able to design a workable solution. So I think the only way to attack the problem is to perform experiments to get a feel for what might work and what problems show up. Stefan