From: Vincent Lefevre <vincent@vinc17.net>
To: Eli Zaretskii <eliz@gnu.org>
Cc: 32413@debbugs.gnu.org
Subject: bug#32413: 25.2; When run as root, emacs writes dconf files in a non-root user's /run/user/XXX directory
Date: Fri, 10 Aug 2018 16:32:03 +0200 [thread overview]
Message-ID: <20180810143203.GE12819@zira.vinc17.org> (raw)
In-Reply-To: <83va8imize.fsf@gnu.org>
On 2018-08-10 16:47:17 +0300, Eli Zaretskii wrote:
> That was just an example of something that doesn't explicitly ask for
> writing a file. Another example is Eshell: when it exits, it writes
> files in the ~/.eshell directory.
If you mean that it writes the history, then that's a usual shell
thing, so that's OK. BTW, that's probably one of the reasons why
"su" redefines HOME to the target user home directory by default.
I suppose that caches could be OK too as long as they are written
in a "safe" place.
> More generally, certain Emacs features might write files "without user
> explicitly asking" as part of providing some feature that needs to be
> persistent between sessions. I think that's quite allright, which is
> why I disagree with the general principle you were trying to
> establish.
Perhaps.
But, for instance, writing a default .emacs would not be OK and would
require at least user confirmation.
> > And if the user introduces some customization, then this can be
> > regarded as an explicit write operation (due to the action of the
> > user in this sense).
>
> Well, in that case, let's regard user using dconf as an explicit write
> permission ;-)
>
> Seriously, though: if your principle can be subverted in some
> situations, then we need to define what situations are those. In
> particular, how is what you report different from what Eshell does on
> exit?
So, perhaps this should be on a case by case basis. I don't know about
dconf, but in that case, this doesn't seem to be correct. And if not
writing under $HOME, I think that the owner of the directory should be
checked in some cases.
--
Vincent Lefèvre <vincent@vinc17.net> - Web: <https://www.vinc17.net/>
100% accessible validated (X)HTML - Blog: <https://www.vinc17.net/blog/>
Work: CR INRIA - computer arithmetic / AriC project (LIP, ENS-Lyon)
next prev parent reply other threads:[~2018-08-10 14:32 UTC|newest]
Thread overview: 15+ messages / expand[flat|nested] mbox.gz Atom feed top
2018-08-10 9:30 bug#32413: 25.2; When run as root, emacs writes dconf files in a non-root user's /run/user/XXX directory Vincent Lefevre
2018-08-10 12:17 ` Eli Zaretskii
2018-08-10 12:57 ` Vincent Lefevre
2018-08-10 13:47 ` Eli Zaretskii
2018-08-10 14:32 ` Vincent Lefevre [this message]
2018-08-10 15:41 ` Glenn Morris
2018-08-10 15:53 ` Vincent Lefevre
2018-08-12 17:31 ` Noam Postavsky
2018-08-12 22:03 ` Andreas Schwab
2018-08-12 23:45 ` Glenn Morris
2018-08-10 19:39 ` Eli Zaretskii
2018-08-10 12:28 ` Noam Postavsky
2018-08-10 12:39 ` Eli Zaretskii
2018-08-12 17:28 ` Noam Postavsky
2018-08-10 14:17 ` Vincent Lefevre
Reply instructions:
You may reply publicly to this message via plain-text email
using any one of the following methods:
* Save the following mbox file, import it into your mail client,
and reply-to-all from there: mbox
Avoid top-posting and favor interleaved quoting:
https://en.wikipedia.org/wiki/Posting_style#Interleaved_style
* Reply using the --to, --cc, and --in-reply-to
switches of git-send-email(1):
git send-email \
--in-reply-to=20180810143203.GE12819@zira.vinc17.org \
--to=vincent@vinc17.net \
--cc=32413@debbugs.gnu.org \
--cc=eliz@gnu.org \
/path/to/YOUR_REPLY
https://kernel.org/pub/software/scm/git/docs/git-send-email.html
* If your mail client supports setting the In-Reply-To header
via mailto: links, try the mailto: link
Be sure your reply has a Subject: header at the top and a blank line
before the message body.
Code repositories for project(s) associated with this external index
https://git.savannah.gnu.org/cgit/emacs.git
https://git.savannah.gnu.org/cgit/emacs/org-mode.git
This is an external index of several public inboxes,
see mirroring instructions on how to clone and mirror
all data and code used by this external index.