[Top][All Lists]

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: Emacs RPC security

From: Lars Magne Ingebrigtsen
Subject: Re: Emacs RPC security
Date: Tue, 03 May 2011 03:34:06 +0200
User-agent: Gnus/5.110018 (No Gnus v0.18) Emacs/24.0.50 (gnu/linux)

Ted Zlatanov <address@hidden> writes:

> ssh+ssh-agent has a user name and can authenticate the host keys.

Emacs Server has a secret it authenticate, which is pretty much the same

> It has many other feature server.el doesn't, so it's like only root
> SSH access was ever allowed.  Most importantly, it has PPK
> authentication so there is no shared secret passed around unless the
> server allows password authentication.

Well, if the Emacs Server connection was encrypted, it'd be rather
similar.  You need access to the agent to subvert ssh+ssh-agent, and you
need access to user-read-only files to access the Emacs Server.  Not
much difference (in principle), except for the transport layer security.

(domestic pets only, the antidote for overdose, milk.)
  bloggy blog http://lars.ingebrigtsen.no/

reply via email to

[Prev in Thread] Current Thread [Next in Thread]