Re: Emacs RPC security

emacs-devel

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: Emacs RPC security

From:	Stefan Monnier
Subject:	Re: Emacs RPC security
Date:	Mon, 02 May 2011 16:48:17 -0300
User-agent:	Gnus/5.13 (Gnus v5.13) Emacs/24.0.50 (gnu/linux)

> I already mentioned that given GnuTLS, we can associate client-side SSL
> certificates with particular functions, so we authenticate on the
> certificates and authorize based on the (certificate, function)
> combination.  This seems to me much better, even if "orthogonal," than
> the current "come visit my server and run anything you like" approach.

I think this is pushing server.el where it shouldn't go.  It's not meant
as "Emacs as a server for whichever network service you can think of",
but just "use your own Emacs from other processes".  If you want your
Emacs to offer services to various users (rather than just to yourself),
then you'll want to implement your own (probably based on GNUtls).


        Stefan

[Prev in Thread]

Current Thread

[Next in Thread]

Re: client certs and CRL lists for GnuTLS, (continued)

Prev by Date: Re: [PATCH] GnuTLS support on Woe32
Next by Date: Re: bookkeeping to prepare for a 64-bit EMACS_INT on 32-bit hosts
Previous by thread: Re: Emacs RPC security
Next by thread: Re: Emacs RPC security
Index(es):
- Date
- Thread