From mboxrd@z Thu Jan 1 00:00:00 1970 Path: news.gmane.org!not-for-mail From: Eli Zaretskii Newsgroups: gmane.emacs.bugs,gmane.emacs.pretest.bugs Subject: bug#865: 23.0.60; The directory is unsafe today Date: Thu, 04 Sep 2008 19:10:51 +0300 Message-ID: References: <48BD642C.5050405@gmail.com> <48BD74D5.4050800@gnu.org> <48BDD155.8060005@gnu.org> <48BF2171.8040101@gnu.org> <48BF5671.1040705@gnu.org> Reply-To: Eli Zaretskii , 865@emacsbugs.donarmstrong.com NNTP-Posting-Host: lo.gmane.org X-Trace: ger.gmane.org 1220545717 20498 80.91.229.12 (4 Sep 2008 16:28:37 GMT) X-Complaints-To: usenet@ger.gmane.org NNTP-Posting-Date: Thu, 4 Sep 2008 16:28:37 +0000 (UTC) Cc: emacs-pretest-bug@gnu.org, 865@emacsbugs.donarmstrong.com To: Jason Rumney Original-X-From: bug-gnu-emacs-bounces+geb-bug-gnu-emacs=m.gmane.org@gnu.org Thu Sep 04 18:29:31 2008 Return-path: Envelope-to: geb-bug-gnu-emacs@m.gmane.org Original-Received: from lists.gnu.org ([199.232.76.165]) by lo.gmane.org with esmtp (Exim 4.50) id 1KbHhm-0007SW-56 for geb-bug-gnu-emacs@m.gmane.org; Thu, 04 Sep 2008 18:29:10 +0200 Original-Received: from localhost ([127.0.0.1]:52957 helo=lists.gnu.org) by lists.gnu.org with esmtp (Exim 4.43) id 1KbHgm-0000me-Mp for geb-bug-gnu-emacs@m.gmane.org; Thu, 04 Sep 2008 12:28:08 -0400 Original-Received: from mailman by lists.gnu.org with tmda-scanned (Exim 4.43) id 1KbHgG-0000WE-D9 for bug-gnu-emacs@gnu.org; Thu, 04 Sep 2008 12:27:36 -0400 Original-Received: from exim by lists.gnu.org with spam-scanned (Exim 4.43) id 1KbHgE-0000Us-Su for bug-gnu-emacs@gnu.org; Thu, 04 Sep 2008 12:27:35 -0400 Original-Received: from [199.232.76.173] (port=50932 helo=monty-python.gnu.org) by lists.gnu.org with esmtp (Exim 4.43) id 1KbHgE-0000Ua-A0 for bug-gnu-emacs@gnu.org; Thu, 04 Sep 2008 12:27:34 -0400 Original-Received: from rzlab.ucr.edu ([138.23.92.77]:45955) by monty-python.gnu.org with esmtps (TLS-1.0:DHE_RSA_AES_256_CBC_SHA1:32) (Exim 4.60) (envelope-from ) id 1KbHgD-0001gC-UT for bug-gnu-emacs@gnu.org; Thu, 04 Sep 2008 12:27:34 -0400 Original-Received: from rzlab.ucr.edu (rzlab.ucr.edu [127.0.0.1]) by rzlab.ucr.edu (8.13.8/8.13.8/Debian-3) with ESMTP id m84GRV1I024388; Thu, 4 Sep 2008 09:27:32 -0700 Original-Received: (from debbugs@localhost) by rzlab.ucr.edu (8.13.8/8.13.8/Submit) id m84GK403021348; Thu, 4 Sep 2008 09:20:04 -0700 X-Loop: don@donarmstrong.com Resent-From: Eli Zaretskii Resent-To: bug-submit-list@donarmstrong.com Resent-CC: Emacs Bugs Resent-Date: Thu, 04 Sep 2008 16:20:04 +0000 Resent-Message-ID: Resent-Sender: don@donarmstrong.com X-Emacs-PR-Message: report 865 X-Emacs-PR-Package: emacs X-Emacs-PR-Keywords: Original-Received: via spool by submit@emacsbugs.donarmstrong.com id=B.122054465918993 (code B ref -1); Thu, 04 Sep 2008 16:20:04 +0000 Original-Received: (at submit) by emacsbugs.donarmstrong.com; 4 Sep 2008 16:10:59 +0000 Original-Received: from fencepost.gnu.org (fencepost.gnu.org [140.186.70.10]) by rzlab.ucr.edu (8.13.8/8.13.8/Debian-3) with ESMTP id m84GAtsP018978 for ; Thu, 4 Sep 2008 09:10:56 -0700 Original-Received: from mx10.gnu.org ([199.232.76.166]:55294) by fencepost.gnu.org with esmtp (Exim 4.67) (envelope-from ) id 1KbHOV-0008B6-8z for emacs-pretest-bug@gnu.org; Thu, 04 Sep 2008 12:09:15 -0400 Original-Received: from Debian-exim by monty-python.gnu.org with spam-scanned (Exim 4.60) (envelope-from ) id 1KbHQ2-0007CJ-TU for emacs-pretest-bug@gnu.org; Thu, 04 Sep 2008 12:10:54 -0400 Original-Received: from mtaout7.012.net.il ([84.95.2.19]:37121) by monty-python.gnu.org with esmtp (Exim 4.60) (envelope-from ) id 1KbHQ2-0007C3-AD; Thu, 04 Sep 2008 12:10:50 -0400 Original-Received: from HOME-C4E4A596F7 ([84.229.211.50]) by i-mtaout7.012.net.il (HyperSendmail v2007.08) with ESMTPA id <0K6O001EJIB7I8O0@i-mtaout7.012.net.il>; Thu, 04 Sep 2008 19:11:32 +0300 (IDT) In-reply-to: <48BF5671.1040705@gnu.org> X-012-Sender: halo1@inter.net.il X-detected-kernel: by monty-python.gnu.org: Solaris 10 (1203?) X-CrossAssassin-Score: 2 X-detected-kernel: by monty-python.gnu.org: Linux 2.6 (newer, 3) Resent-Date: Thu, 04 Sep 2008 12:27:35 -0400 X-BeenThere: bug-gnu-emacs@gnu.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: "Bug reports for GNU Emacs, the Swiss army knife of text editors" List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , Original-Sender: bug-gnu-emacs-bounces+geb-bug-gnu-emacs=m.gmane.org@gnu.org Errors-To: bug-gnu-emacs-bounces+geb-bug-gnu-emacs=m.gmane.org@gnu.org Xref: news.gmane.org gmane.emacs.bugs:20145 gmane.emacs.pretest.bugs:22971 Archived-At: > Date: Thu, 04 Sep 2008 11:30:57 +0800 > From: Jason Rumney > CC: 865@emacsbugs.donarmstrong.com, emacs-pretest-bug@gnu.org > > > I think the only good solution in that venue would be to have a new > > primitive for such tests, and implement it on Windows so that it will > > cater to this special case. Any other solution is likely to lie about > > the file's security attributes. > > > > We are telling a lie already by attempting to map ACLs to POSIX > ownership. The current lie is relatively small: it is limited to the interpretation of the group ID, while the owner of the file is displayed and interpreted correctly. > If we are going to attempt this, then it is better to tell a lie > that fits with the expectations of POSIX (ie that owners of files > are individual users). The problem is, I don't see how we can do this reliably. In this particular case, Emacs compares the file's ownership with the UID of the user running Emacs, so we could pretend the file is owned by that user. But in other cases, Emacs could compare the ownership to a UID of some other user, and what will we do then? That said, I won't necessarily object if you find a clever way out of this that leaves existing Lisp code intact. > A different API that tells the full story might be a good idea, but > any new API is only going to be used by future developers who know > about the API, it cannot fix problems in existing Lisp code that > might make the same assumptions as server.el. We are talking about Emacs 23, so it's not too late to find all those places (only in the Emacs distro, of course) and fix them. I just looked, there aren't so many of them. And server.el should have an entirely different code to do what it wants on Windows, anyway.