[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
Re: [BUG] Org may fetch remote content without asking user consent
|
From: |
Ihor Radchenko |
|
Subject: |
Re: [BUG] Org may fetch remote content without asking user consent |
|
Date: |
Wed, 07 Feb 2024 16:12:41 +0000 |
Max Nikulin <manikulin@gmail.com> writes:
> Consider the following .org file:
>
> --- 8< ---
> #+setupfile: /dav:localhost#8000:/msg-123456.org
> --- >8 ---
>
> When Emacs opens it, HTTP server (plain HTTP, not WebDAV is used for
> test) logs contain
> ...
> Emacs *Messages* buffer:
>
> Tramp: Opening connection for localhost using dav...failed
> ...
> No dialog whether the file should be downloaded is displayed.
>
> My expectation is that Org should not connect to remote servers in
> default configuration unless it is explicitly approved by the user.
We only protect from files matching `org-url-p'.
TRAMP files are not checked.
I think we can enable checking for anything where `file-remote-p'
returns non-nil.
--
Ihor Radchenko // yantar92,
Org mode contributor,
Learn more about Org mode at <https://orgmode.org/>.
Support Org development at <https://liberapay.com/org-mode>,
or support my work at <https://liberapay.com/yantar92>
- [BUG] Org may fetch remote content without asking user consent, Max Nikulin, 2024/02/07
- Re: [BUG] Org may fetch remote content without asking user consent,
Ihor Radchenko <=
- Re: [BUG] Org may fetch remote content without asking user consent, Max Nikulin, 2024/02/07
- Re: [BUG] Org may fetch remote content without asking user consent, Ihor Radchenko, 2024/02/07
- Re: [BUG] Org may fetch remote content without asking user consent, Max Nikulin, 2024/02/08
- Re: [BUG] Org may fetch remote content without asking user consent, Ihor Radchenko, 2024/02/08
- Re: [BUG] Org may fetch remote content without asking user consent, Max Nikulin, 2024/02/11
- Re: [BUG] Org may fetch remote content without asking user consent, Ihor Radchenko, 2024/02/13