From mboxrd@z Thu Jan 1 00:00:00 1970 Path: news.gmane.org!not-for-mail From: Stefan Monnier Newsgroups: gmane.emacs.devel,gmane.emacs.pretest.bugs Subject: Re: 22.1.50; insert-file-contents is slow under tramp Date: Mon, 27 Aug 2007 09:58:32 -0400 Message-ID: References: <87veb6l9b0.fsf@escher.local.home> <46CD98DC.1050701@gmx.at> <87r6lul2fc.fsf@escher.local.home> <46CDC8B3.7000301@gmx.at> <46CDED2B.3080904@gmx.at> <87k5rmkmu0.fsf@escher.local.home> <46CDF5B7.2030201@gmx.at> <87fy2akjzt.fsf@escher.local.home> <87bqcxzeat.fsf@gmx.de> <871wdqlgzz.fsf@gmx.de> NNTP-Posting-Host: lo.gmane.org Mime-Version: 1.0 Content-Type: text/plain; charset=us-ascii X-Trace: sea.gmane.org 1188223127 2181 80.91.229.12 (27 Aug 2007 13:58:47 GMT) X-Complaints-To: usenet@sea.gmane.org NNTP-Posting-Date: Mon, 27 Aug 2007 13:58:47 +0000 (UTC) Cc: emacs-pretest-bug@gnu.org, Stephen Berman , emacs-devel@gnu.org To: Michael Albinus Original-X-From: emacs-devel-bounces+ged-emacs-devel=m.gmane.org@gnu.org Mon Aug 27 15:58:44 2007 Return-path: Envelope-to: ged-emacs-devel@m.gmane.org Original-Received: from lists.gnu.org ([199.232.76.165]) by lo.gmane.org with esmtp (Exim 4.50) id 1IPf75-0005vZ-Tp for ged-emacs-devel@m.gmane.org; Mon, 27 Aug 2007 15:58:44 +0200 Original-Received: from localhost ([127.0.0.1] helo=lists.gnu.org) by lists.gnu.org with esmtp (Exim 4.43) id 1IPf75-0003O6-J2 for ged-emacs-devel@m.gmane.org; Mon, 27 Aug 2007 09:58:43 -0400 Original-Received: from mailman by lists.gnu.org with tmda-scanned (Exim 4.43) id 1IPf70-0003NO-RW for emacs-devel@gnu.org; Mon, 27 Aug 2007 09:58:38 -0400 Original-Received: from exim by lists.gnu.org with spam-scanned (Exim 4.43) id 1IPf70-0003MD-3S for emacs-devel@gnu.org; Mon, 27 Aug 2007 09:58:38 -0400 Original-Received: from [199.232.76.173] (helo=monty-python.gnu.org) by lists.gnu.org with esmtp (Exim 4.43) id 1IPf70-0003M6-0v for emacs-devel@gnu.org; Mon, 27 Aug 2007 09:58:38 -0400 Original-Received: from tomts5-srv.bellnexxia.net ([209.226.175.25]) by monty-python.gnu.org with esmtp (Exim 4.60) (envelope-from ) id 1IPf6v-0003bv-Rh; Mon, 27 Aug 2007 09:58:34 -0400 Original-Received: from pastel.home ([70.55.144.147]) by tomts5-srv.bellnexxia.net (InterMail vM.5.01.06.13 201-253-122-130-113-20050324) with ESMTP id <20070827135833.VYAU1592.tomts5-srv.bellnexxia.net@pastel.home>; Mon, 27 Aug 2007 09:58:33 -0400 Original-Received: by pastel.home (Postfix, from userid 20848) id A7AA17F83; Mon, 27 Aug 2007 09:58:32 -0400 (EDT) In-Reply-To: (Michael Albinus's message of "Mon\, 27 Aug 2007 13\:41\:09 +0200") User-Agent: Gnus/5.11 (Gnus v5.11) Emacs/22.1.50 (gnu/linux) X-Detected-Kernel: Solaris 8 (1) X-BeenThere: emacs-devel@gnu.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: "Emacs development discussions." List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , Original-Sender: emacs-devel-bounces+ged-emacs-devel=m.gmane.org@gnu.org Errors-To: emacs-devel-bounces+ged-emacs-devel=m.gmane.org@gnu.org Xref: news.gmane.org gmane.emacs.devel:77286 gmane.emacs.pretest.bugs:19644 Archived-At: > The current approach(1) is to remove any temporary file immediately after > it has been processes by Emacs (for example, insert-file-contents is > finished). This reduces the time nasty third party can see such a file. If the file is readable, that's a major security concern. > But I admit, this might not be sufficient wrt security threats. Maybe > one could change it such a way, that temporary files shall be owned by > (user-login-name), and shall carry 0400 permissions. How can you do that? Let's say I access a file of user BAR from user FOO, how would you go about doing it in such a way that user TOTO can never see the content of the file? BAR can't use `chown' (unless it's root). > (1): That's the theory. In practice, there are still some zero-length > temporary files left, for which I haven't debugged yet who is > responsible to remove them. On my todo list. Oh, I've sen those. Yes, they need fixing as well, but it's minor: this is not a security concern. Stefan