OT: gnuclient vs. emacsclient

To: mutt-users@xxxxxxxx
Subject: OT: gnuclient vs. emacsclient
From: Rob Reid <kepler@xxxxxxx>
Date: Tue, 18 Nov 2003 09:43:46 -0800
Cc: Rodrigo Bernardo Pimentel <rbp@xxxxxxxxxxxx>
In-reply-to: <20031118162249.GA515@xxxxxxxxxxxxxxxxxxxxxxxxxxxxxx>
List-unsubscribe: <mailto:mutt-users-request@mutt.org?body=unsubscribe>
Mail-followup-to: mutt-users@xxxxxxxx, Rodrigo Bernardo Pimentel <rbp@xxxxxxxxxxxx>
References: <20031117232033.GA32145%konsti@xxxxxxxxxxxxx> <20031118004633.GB30648@xxxxxxxxxxxxxxxxxxxxxxx> <20031118031338.GA22537@xxxxxxxxxxxxxxxxxxxxxx> <20031118055942.GB30194@xxxxxxxx> <20031118143018.GE22537@xxxxxxxxxxxxxxxxxxxxxx> <20031118162249.GA515@xxxxxxxxxxxxxxxxxxxxxxxxxxxxxx>
Sender: owner-mutt-users@xxxxxxxx
User-agent: Mutt/1.5.4i

Well, maybe not that OT, since we're discussing the best way of editing
messages with mutt.

At  8:22 AM PST on November 18 Allister MacLeod sent off:
> Hmm.. seems unfair that emacsclient doesn't let you pass -eval

Yes, *seems* that way, but the way I see it remote -eval without decent
authentication is a security risk.  Last I checked, gnuclient used xhost
type authentication instead of xauth type authentication.

I have not tried this, or heard of an exploit, but suppose another user
managed to gnuclient -eval some lisp code on your xemacs that opened up the
permissions of some files or some other nefarious thing.

emacsclient seems to only send files to emacs servers with the same UID, but
even if another user finds a way around that, sending files is merely
annoying, or at worst a DoS attack if the malicious user does it in a tight
loop.

Not a problem on a single user system, but some of the more interesting
applications of gnuclient, like editing messages on a different computer from
the one where you're running mutt, involve the network.

Follow-Ups:
- Re: OT: gnuclient vs. emacsclient
  - From: Rodrigo Bernardo Pimentel

References:
- set editor, switching from vim to emacs
  - From: Konstantin Kletschke
- Re: set editor, switching from vim to emacs
  - From: Rob Reid
- Re: set editor, switching from vim to emacs
  - From: Rodrigo Bernardo Pimentel
- Re: set editor, switching from vim to emacs
  - From: Allister MacLeod
- Re: set editor, switching from vim to emacs
  - From: Rodrigo Bernardo Pimentel
- Re: set editor, switching from vim to emacs
  - From: Allister MacLeod

Prev by Date: Re: set editor, switching from vim to emacs
Next by Date: Re: OT: gnuclient vs. emacsclient
Previous by thread: Re: set editor, switching from vim to emacs
Next by thread: Re: OT: gnuclient vs. emacsclient
Index(es):
- Date
- Thread