Re: Security flaw in pgg-gpg-process-region?

emacs-devel

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: Security flaw in pgg-gpg-process-region?

From:	Daiki Ueno
Subject:	Re: Security flaw in pgg-gpg-process-region?
Date:	Wed, 06 Sep 2006 18:25:48 +0900

>>>>> In <address@hidden> 
>>>>>   Richard Stallman <address@hidden> wrote:
>     Anyway, I fixed it in Gnus CVS so that passphrases are encoded with
>     locale-coding-system.  I'm not sure if we should add a new user option
>     to control the encoding.

> locale-coding-system exists to tell Emacs how to decode some system
> messages which are encoded (outside Emacs) in the current locale.  It
> seems to be wrong for this use.  Do you see some reason to think it is
> right?

> If you see a reason, please explain it to me.  Otherwise, please make
> a new option for this.

I have no reason.  I just followed the example of setenv which uses
locale-coding-system for encoding the value of envvars.

I prepared pgg-passphrase-coding-system in Gnus CVS.

FYI

$ grep locale-coding-system **/*.el | grep encode-coding-string
env.el:      (setq variable (encode-coding-string variable 
locale-coding-system)))
env.el:      (setq value (encode-coding-string value locale-coding-system)))
hexl.el:           (mapcar (lambda (s) (encode-coding-string s 
locale-coding-system))
term/x-win.el:         (encode-coding-string text (or locale-coding-system

Regards,
-- 
Daiki Ueno

[Prev in Thread]

Current Thread

[Next in Thread]

Re: Security flaw in pgg-gpg-process-region?, (continued)
- Re: Security flaw in pgg-gpg-process-region?, Daiki Ueno, 2006/09/02
  - Re: Security flaw in pgg-gpg-process-region?, Daiki Ueno, 2006/09/02
    - Re: Security flaw in pgg-gpg-process-region?, Richard Stallman, 2006/09/03
    - Re: Security flaw in pgg-gpg-process-region?, Daiki Ueno, 2006/09/03
    - Re: Security flaw in pgg-gpg-process-region?, Richard Stallman, 2006/09/04
    - Re: Security flaw in pgg-gpg-process-region?, Daiki Ueno, 2006/09/04
    - Re: Security flaw in pgg-gpg-process-region?, David Kastrup, 2006/09/04
    - Re: Security flaw in pgg-gpg-process-region?, Daiki Ueno, 2006/09/05
    - Re: Security flaw in pgg-gpg-process-region?, Chong Yidong, 2006/09/05
    - Re: Security flaw in pgg-gpg-process-region?, Richard Stallman, 2006/09/06
    - Re: Security flaw in pgg-gpg-process-region?, Daiki Ueno <=
    - Re: Security flaw in pgg-gpg-process-region?, Richard Stallman, 2006/09/07
    - Re: Security flaw in pgg-gpg-process-region?, Richard Stallman, 2006/09/06
- Re: Security flaw in pgg-gpg-process-region? (was: pgg-gpg-process-region), Richard Stallman, 2006/09/03
- Re: Security flaw in pgg-gpg-process-region?, Florian Weimer, 2006/09/03
  - Re: Security flaw in pgg-gpg-process-region?, Daiki Ueno, 2006/09/03
    - Re: Security flaw in pgg-gpg-process-region?, Miles Bader, 2006/09/03
    - Re: Security flaw in pgg-gpg-process-region?, Richard Stallman, 2006/09/05
    - Re: Security flaw in pgg-gpg-process-region?, Daiki Ueno, 2006/09/05
    - Re: Security flaw in pgg-gpg-process-region?, Richard Stallman, 2006/09/06
    - Re: Security flaw in pgg-gpg-process-region?, Daiki Ueno, 2006/09/06

Prev by Date: Re: TLS smpt encryption
Next by Date: Re: Warning in compilation of Gnus
Previous by thread: Re: Security flaw in pgg-gpg-process-region?
Next by thread: Re: Security flaw in pgg-gpg-process-region?
Index(es):
- Date
- Thread