[Top][All Lists]

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: security of the emacs package system, elpa, melpa and marmalade

From: Matthias Dahl
Subject: Re: security of the emacs package system, elpa, melpa and marmalade
Date: Thu, 26 Sep 2013 11:02:41 +0200
User-agent: Mozilla/5.0 (X11; Linux x86_64; rv:24.0) Gecko/20100101 Thunderbird/24.0

Hello Bastien...

> don't forget those out there who are not educated at all in computer
> science and who picked up Lisp just because they loved Emacs.  I don't 
> think this is such a minority, and this may explain why many security
> concerns (for which you *need* to study computer science), may have
> been overlooked while Emacs was progressing.

Interesting argument. Since Lisp is not such a common language imho and
not quite so easy to learn, I never would have guessed that people
without any kind of technical background did actually choose to give
Lisp a shot just because they liked Emacs.

But actually this should not affect the core code of Emacs itself - at
all. That audience with a limited Lisp skillset should not get repo
write access in the first place and everything handed in as a patch gets
through the community review process and is commented upon. So there is
a nice learning process for the Lisp initiate and QA for the stuff that
gets into Emacs.

Or am I overlooking something here?

So long,

Dipl.-Inf. (FH) Matthias Dahl | Software Engineer | binary-island.eu
 services: custom software [desktop, mobile, web], server administration

reply via email to

[Prev in Thread] Current Thread [Next in Thread]