[Top][All Lists]

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: Reconsider password-cache policy

From: Michael Albinus
Subject: Re: Reconsider password-cache policy
Date: Mon, 26 Jul 2021 16:09:44 +0200
User-agent: Gnus/5.13 (Gnus v5.13) Emacs/28.0.50 (gnu/linux)

akater <nuclearspace@gmail.com> writes:


> There is no point in allowing one library to use the cache but
> disallowing another to do it.  It does not help with security as any
> Elisp code can access that data anyway, any time, while added complexity
> is always bad for security.  In contrast, there certainly must be a
> clear way to turn caching off once and for all.  Given the current
> policy, it can not possibly exist.  Multiplying ~..-do-cache~ variables
> across elisp libraries will not do users any good.

Setting password-cache-expiry to 0 should do this?

> I also think that password caching should be turned off by default.

I disagree. There are cases you cannot work properly w/o password
caching. See for example the recent discussion about Tramp's sudoedit
method in bug#49724.

Best regards, Michael.

reply via email to

[Prev in Thread] Current Thread [Next in Thread]