bug#36154: 26.2; read-passwd function creates a security issue

bug-gnu-emacs

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

bug#36154: 26.2; read-passwd function creates a security issue

From:	Phil Sainty
Subject:	bug#36154: 26.2; read-passwd function creates a security issue
Date:	Thu, 10 Oct 2019 13:30:24 +1300
User-agent:	Orcon Webmail

On 2019-10-10 12:25, Lars Ingebrigtsen wrote:

I think it makes sense to allow users to do this -- this is something
that should be up to them whether to do or not. So I'm closing thisbug
report.  If anybody disagrees with this, please feel free to reopen.


A potential solution to this would to make the low-level kill functions
respect a new `inhibit-kill-ring' variable, such that nothing would be
added to the kill ring if that was non-nil.

A user option for the password entry routine could then be added tocontrol

whether or the variable was set by `read-passwd' when setting up the
minibuffer.

This facility might also have more general applicability, and perhaps
even warrant a minor mode.  I can certainly envisage `inhibit-kill-ring'

being let-bound by users for specific cases, if they consider thatunwanted

kill ring pollution was occurring.


-Phil

[Prev in Thread]

Current Thread

[Next in Thread]

bug#36154: 26.2; read-passwd function creates a security issue, Lars Ingebrigtsen, 2019/10/09
- bug#36154: 26.2; read-passwd function creates a security issue, Phil Sainty <=
  - bug#36154: 26.2; read-passwd function creates a security issue, Noam Postavsky, 2019/10/09
    - bug#36154: 26.2; read-passwd function creates a security issue, Phil Sainty, 2019/10/09

Prev by Date: bug#37183: 26.2 Never for Tab-Always-Indent
Next by Date: bug#36154: 26.2; read-passwd function creates a security issue
Previous by thread: bug#36154: 26.2; read-passwd function creates a security issue
Next by thread: bug#36154: 26.2; read-passwd function creates a security issue
Index(es):
- Date
- Thread