[nongnu] elpa/undo-fu-session cbe37c6643 31/53: Alternate fix for #2, ma

emacs-elpa-diffs

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

[nongnu] elpa/undo-fu-session cbe37c6643 31/53: Alternate fix for #2, ma

From:	ELPA Syncer
Subject:	[nongnu] elpa/undo-fu-session cbe37c6643 31/53: Alternate fix for #2, make the directory only readable by the user
Date:	Thu, 7 Jul 2022 12:05:21 -0400 (EDT)

branch: elpa/undo-fu-session
commit cbe37c664389e2ef8c580dd800ca76b0139f09c5
Author: Campbell Barton <ideasman42@gmail.com>
Commit: Campbell Barton <ideasman42@gmail.com>

    Alternate fix for #2, make the directory only readable by the user
---
 changelog.rst      | 2 +-
 undo-fu-session.el | 6 +++---
 2 files changed, 4 insertions(+), 4 deletions(-)

diff --git a/changelog.rst b/changelog.rst
index 3b5112fd9e..9a0a34041c 100644
--- a/changelog.rst
+++ b/changelog.rst
@@ -5,7 +5,7 @@ Change Log
 
 - In development
 
-  - Write files so only the owner can read them (to avoid potential security 
issues).
+  - Set permissions on the directory only only be readable by the owner (to 
avoid potential security issues).
   - Disable ``global-undo-fu-session`` in ``special-mode`` and it's derived 
modes (such as ``package-menu-mode``).
   - Add ``undo-fu-session-ignore-encrypted-files`` to ignore encrypted files.
   - Fix bug when ``undo-fu-session-linear`` was enabled,
diff --git a/undo-fu-session.el b/undo-fu-session.el
index f847fed568..8ad09c2f3d 100644
--- a/undo-fu-session.el
+++ b/undo-fu-session.el
@@ -470,8 +470,6 @@ Argument PENDING-LIST an `pending-undo-list' compatible 
list."
           (write-char ?\n (current-buffer))
           (prin1 content-data (current-buffer))
           (write-region nil nil undo-file nil 0)
-          ;; This file should only readable by the owner, see #2.
-          (set-file-modes undo-file #o600)
           t)))))
 
 (defun undo-fu-session-save-safe ()
@@ -588,7 +586,9 @@ Argument PENDING-LIST an `pending-undo-list' compatible 
list."
 (defun undo-fu-session-mode-enable ()
   "Turn on 'undo-fu-session-mode' for the current buffer."
   (unless (file-directory-p undo-fu-session-directory)
-    (make-directory undo-fu-session-directory t))
+    (make-directory undo-fu-session-directory t)
+    ;; These files should only readable by the owner, see #2.
+    (set-file-modes undo-fu-session-directory #o700))
   (add-hook 'before-save-hook #'undo-fu-session-save-safe)
   (add-hook 'find-file-hook #'undo-fu-session-recover-safe))

[Prev in Thread]

Current Thread

[Next in Thread]

[nongnu] elpa/undo-fu-session fa4833d470 02/53: readme: update to reference other packages, (continued)
- [nongnu] elpa/undo-fu-session fa4833d470 02/53: readme: update to reference other packages, ELPA Syncer, 2022/07/07
- [nongnu] elpa/undo-fu-session fa62a9b9a1 03/53: Cleanup: messages & docstrings, ELPA Syncer, 2022/07/07
- [nongnu] elpa/undo-fu-session 049fe942f6 11/53: Cleanup: order buffer-undo-list before pending-undo-list, ELPA Syncer, 2022/07/07
- [nongnu] elpa/undo-fu-session 5cc4b4f33d 12/53: Fix for linearizing an empty undo-list disabling undo on reload, ELPA Syncer, 2022/07/07
- [nongnu] elpa/undo-fu-session 56cdd3538a 16/53: Don't show common-place messages in the echo area, ELPA Syncer, 2022/07/07
- [nongnu] elpa/undo-fu-session 5135b5cb61 15/53: Update changelog, ELPA Syncer, 2022/07/07
- [nongnu] elpa/undo-fu-session a038914736 18/53: Update readme, ELPA Syncer, 2022/07/07
- [nongnu] elpa/undo-fu-session 191babe23c 24/53: Cleanup: docstring width warnings, ELPA Syncer, 2022/07/07
- [nongnu] elpa/undo-fu-session 00bc3807d7 25/53: Cleanup: replace 'if' with 'cond', ELPA Syncer, 2022/07/07
- [nongnu] elpa/undo-fu-session 7c095e863c 26/53: Cleanup: remove redundant groups, ELPA Syncer, 2022/07/07
- [nongnu] elpa/undo-fu-session cbe37c6643 31/53: Alternate fix for #2, make the directory only readable by the user, ELPA Syncer <=
- [nongnu] elpa/undo-fu-session 4605b0cc2b 33/53: Tests: simplify execution, with & without the linear option set, ELPA Syncer, 2022/07/07
- [nongnu] elpa/undo-fu-session 3e810c7c9a 34/53: Tests: move into subdirectory, ELPA Syncer, 2022/07/07
- [nongnu] elpa/undo-fu-session 1a3d500d8b 39/53: Support different compression formats & format conversion, ELPA Syncer, 2022/07/07
- [nongnu] elpa/undo-fu-session b492c07573 43/53: Fix bzip2 and Z-standard compression types, ELPA Syncer, 2022/07/07
- [nongnu] elpa/undo-fu-session d2a5ca1299 45/53: Use 600 for the mode instead of 700, ELPA Syncer, 2022/07/07
- [nongnu] elpa/undo-fu-session e4cf026fd5 47/53: Use GPL 3 license in header, ELPA Syncer, 2022/07/07
- [nongnu] elpa/undo-fu-session 703ea8d000 46/53: Fix incorrect mode for the undo-fu-session directory, ELPA Syncer, 2022/07/07
- [nongnu] elpa/undo-fu-session 4b14cea4a9 44/53: Fix integer comparison and use assoc instead of assoc-default, ELPA Syncer, 2022/07/07
- [nongnu] elpa/undo-fu-session 36e3bbabfa 51/53: Always ensure the target directory exists before saving, ELPA Syncer, 2022/07/07
- [nongnu] elpa/undo-fu-session b2d8874bc8 20/53: readme: update evil mode notes, ELPA Syncer, 2022/07/07

Prev by Date: [nongnu] elpa/undo-fu-session 7c095e863c 26/53: Cleanup: remove redundant groups
Next by Date: [nongnu] elpa/undo-fu-session 4605b0cc2b 33/53: Tests: simplify execution, with & without the linear option set
Previous by thread: [nongnu] elpa/undo-fu-session 7c095e863c 26/53: Cleanup: remove redundant groups
Next by thread: [nongnu] elpa/undo-fu-session 4605b0cc2b 33/53: Tests: simplify execution, with & without the linear option set
Index(es):
- Date
- Thread