From: David Kastrup <dak@gnu.org>
To: Stefan Monnier <monnier@iro.umontreal.ca>
Cc: emacs-pretest-bug@gnu.org,
Stephen Berman <Stephen.Berman@gmx.net>,
Michael Albinus <michael.albinus@gmx.de>,
emacs-devel@gnu.org
Subject: Re: 22.1.50; insert-file-contents is slow under tramp
Date: Mon, 27 Aug 2007 16:14:56 +0200 [thread overview]
Message-ID: <86sl65qd27.fsf@lola.quinscape.zz> (raw)
In-Reply-To: <jwvmywdhyjo.fsf-monnier+emacs@gnu.org> (Stefan Monnier's message of "Mon\, 27 Aug 2007 09\:58\:32 -0400")
Stefan Monnier <monnier@iro.umontreal.ca> writes:
>> The current approach(1) is to remove any temporary file immediately after
>> it has been processes by Emacs (for example, insert-file-contents is
>> finished). This reduces the time nasty third party can see such a file.
>
> If the file is readable, that's a major security concern.
>
>> But I admit, this might not be sufficient wrt security threats. Maybe
>> one could change it such a way, that temporary files shall be owned by
>> (user-login-name), and shall carry 0400 permissions.
>
> How can you do that? Let's say I access a file of user BAR from
> user FOO, how would you go about doing it in such a way that user
> TOTO can never see the content of the file? BAR can't use `chown'
> (unless it's root).
Huh? We are talking about tramp here. The file is transferred
through a ssh session. On the receiving side, you'll be free to
create a file with whatever permissions you want, and on the sending
side, no change of permissions is required to access the file.
--
David Kastrup
next prev parent reply other threads:[~2007-08-27 14:14 UTC|newest]
Thread overview: 30+ messages / expand[flat|nested] mbox.gz Atom feed top
2007-08-23 12:33 22.1.50; insert-file-contents is slow under tramp Stephen Berman
2007-08-23 14:25 ` martin rudalics
2007-08-23 15:02 ` Stephen Berman
2007-08-23 17:49 ` martin rudalics
2007-08-23 18:59 ` Stefan Monnier
2007-08-23 20:25 ` martin rudalics
2007-08-23 20:39 ` Stephen Berman
2007-08-23 21:01 ` martin rudalics
[not found] ` <46CDF5B7.2030201@g\x04mx.at>
2007-08-23 21:40 ` Stephen Berman
2007-08-24 5:34 ` Michael Albinus
2007-08-24 7:18 ` Stephen Berman
2007-08-24 14:32 ` Stefan Monnier
2007-08-26 10:36 ` Michael Albinus
2007-08-26 19:01 ` David Kastrup
2007-08-26 19:24 ` Michael Albinus
2007-08-27 4:16 ` Stefan Monnier
2007-08-27 11:41 ` Michael Albinus
2007-08-27 13:58 ` Stefan Monnier
2007-08-27 14:09 ` Thien-Thi Nguyen
2007-08-27 14:14 ` David Kastrup [this message]
2007-08-27 14:53 ` Michael Albinus
2007-08-27 20:11 ` Stefan Monnier
2007-08-27 20:37 ` Michael Albinus
2007-08-27 10:52 ` Michael Albinus
2007-08-27 11:33 ` David Kastrup
2007-08-27 18:18 ` Richard Stallman
2007-08-27 18:51 ` David Kastrup
2007-08-24 9:28 ` Eli Zaretskii
2007-08-24 9:35 ` Stephen Berman
2007-08-24 16:10 ` Richard Stallman
Reply instructions:
You may reply publicly to this message via plain-text email
using any one of the following methods:
* Save the following mbox file, import it into your mail client,
and reply-to-all from there: mbox
Avoid top-posting and favor interleaved quoting:
https://en.wikipedia.org/wiki/Posting_style#Interleaved_style
* Reply using the --to, --cc, and --in-reply-to
switches of git-send-email(1):
git send-email \
--in-reply-to=86sl65qd27.fsf@lola.quinscape.zz \
--to=dak@gnu.org \
--cc=Stephen.Berman@gmx.net \
--cc=emacs-devel@gnu.org \
--cc=emacs-pretest-bug@gnu.org \
--cc=michael.albinus@gmx.de \
--cc=monnier@iro.umontreal.ca \
/path/to/YOUR_REPLY
https://kernel.org/pub/software/scm/git/docs/git-send-email.html
* If your mail client supports setting the In-Reply-To header
via mailto: links, try the mailto: link
Be sure your reply has a Subject: header at the top and a blank line
before the message body.
Code repositories for project(s) associated with this external index
https://git.savannah.gnu.org/cgit/emacs.git
https://git.savannah.gnu.org/cgit/emacs/org-mode.git
This is an external index of several public inboxes,
see mirroring instructions on how to clone and mirror
all data and code used by this external index.