From: vroonhof@math.ethz.ch
Cc: ding@gnus.org
Subject: Re: Possible security hole? nnfolder evaluates local variables..
Date: Thu, 8 May 1997 18:15:29 +0200 (MET DST) [thread overview]
Message-ID: <199705081615.SAA04296@loewner.math.ethz.ch> (raw)
In-Reply-To: <m2oham11cj.fsf@proletcult.slip.ifi.uio.no> from "Lars Magne Ingebrigtsen" at May 8, 97 04:32:12 pm
> > The problem:
> > XEmacs evals local variables for nnfolder files
> >
> > The symptom:
> > This appeared in the minibuffer
> >
> > Fetching headers for nnfolder:xemacs-beta...done
> > File local-variables error: (void-function winmgr-mode)
>
> [refering to definition of nnheader-find-file-noselect]
> The `enable-local-variables' (under Emacs, at least) should ensure
> that no variables are evaled. Is there some other variable under
> XEmacs that controls this?
XEmacs uses the same variable..
> nnfolder uses this to load the folder:>
> (defun nnheader-find-file-noselect (&rest args)
Ahhh. That is the problem...
Under XEmacs it nnheader-find-file-noselect is shadowed by
nnheader-xemacs-find-file-noselect (from nnheaderxm.el). A large ugly
function that looks like a verbatim copy of find-file-noselect from
the XEmacs files.el. It proably does the enable-local-variables thing
wrong. I am not sure why it calls after-find-file functions at all.
The last reference I can find to it is in the Changelog of Gnus 5.2.39.
where there is a "simplify" entry. I cannot see why it was introduced.
Does anybody know?
--
Jan Vroonhof http://www.math.ethz.ch/~vroonhof/
Mathematik, vroonhof@math.ethz.ch
HG E16, ETH-Zentrum, Tel: +41-1-6325456/25154
Raemistrasse 101, CH-8092 Zuerich. Fax: +41-1-6321085
next parent reply other threads:[~1997-05-08 16:15 UTC|newest]
Thread overview: 8+ messages / expand[flat|nested] mbox.gz Atom feed top
[not found] <m2oham11cj.fsf@proletcult.slip.ifi.uio.no>
1997-05-08 16:15 ` vroonhof [this message]
1997-05-08 19:54 ` Steven L Baur
1997-05-09 10:10 ` Jan Vroonhof
1997-05-17 3:36 ` Lars Magne Ingebrigtsen
1997-05-17 5:22 ` Steven L Baur
1997-05-19 0:06 ` Lars Magne Ingebrigtsen
1997-05-17 14:19 ` Hrvoje Niksic
1997-05-17 3:34 ` Lars Magne Ingebrigtsen
Reply instructions:
You may reply publicly to this message via plain-text email
using any one of the following methods:
* Save the following mbox file, import it into your mail client,
and reply-to-all from there: mbox
Avoid top-posting and favor interleaved quoting:
https://en.wikipedia.org/wiki/Posting_style#Interleaved_style
* Reply using the --to, --cc, and --in-reply-to
switches of git-send-email(1):
git send-email \
--in-reply-to=199705081615.SAA04296@loewner.math.ethz.ch \
--to=vroonhof@math.ethz.ch \
--cc=ding@gnus.org \
/path/to/YOUR_REPLY
https://kernel.org/pub/software/scm/git/docs/git-send-email.html
* If your mail client supports setting the In-Reply-To header
via mailto: links, try the mailto: link
Be sure your reply has a Subject: header at the top and a blank line
before the message body.
This is a public inbox, see mirroring instructions
for how to clone and mirror all data and code used for this inbox;
as well as URLs for NNTP newsgroup(s).