[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
Re: Reconsider password-cache policy
From: |
Michael Albinus |
Subject: |
Re: Reconsider password-cache policy |
Date: |
Mon, 26 Jul 2021 16:09:44 +0200 |
User-agent: |
Gnus/5.13 (Gnus v5.13) Emacs/28.0.50 (gnu/linux) |
akater <nuclearspace@gmail.com> writes:
Hi,
> There is no point in allowing one library to use the cache but
> disallowing another to do it. It does not help with security as any
> Elisp code can access that data anyway, any time, while added complexity
> is always bad for security. In contrast, there certainly must be a
> clear way to turn caching off once and for all. Given the current
> policy, it can not possibly exist. Multiplying ~..-do-cache~ variables
> across elisp libraries will not do users any good.
Setting password-cache-expiry to 0 should do this?
> I also think that password caching should be turned off by default.
I disagree. There are cases you cannot work properly w/o password
caching. See for example the recent discussion about Tramp's sudoedit
method in bug#49724.
Best regards, Michael.