Re: Reconsider password-cache policy

emacs-devel

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: Reconsider password-cache policy

From:	Michael Albinus
Subject:	Re: Reconsider password-cache policy
Date:	Mon, 26 Jul 2021 16:09:44 +0200
User-agent:	Gnus/5.13 (Gnus v5.13) Emacs/28.0.50 (gnu/linux)

akater <nuclearspace@gmail.com> writes:

Hi,

> There is no point in allowing one library to use the cache but
> disallowing another to do it.  It does not help with security as any
> Elisp code can access that data anyway, any time, while added complexity
> is always bad for security.  In contrast, there certainly must be a
> clear way to turn caching off once and for all.  Given the current
> policy, it can not possibly exist.  Multiplying ~..-do-cache~ variables
> across elisp libraries will not do users any good.

Setting password-cache-expiry to 0 should do this?

> I also think that password caching should be turned off by default.

I disagree. There are cases you cannot work properly w/o password
caching. See for example the recent discussion about Tramp's sudoedit
method in bug#49724.

Best regards, Michael.

[Prev in Thread]

Current Thread

[Next in Thread]

Reconsider password-cache policy, akater, 2021/07/26
- Re: Reconsider password-cache policy, Michael Albinus <=

Prev by Date: Re: Ada (was Re: Tree Sitter)
Next by Date: Re: How to add pseudo vector types
Previous by thread: Reconsider password-cache policy
Next by thread: multi-process elisp compilation?
Index(es):
- Date
- Thread